Initial information of a reported ransomware attack on vendor Healthcare Management Solutions indicates the company acted in “violation of its obligations to CMS,” according to the agency, and that the incident involving HMS has the potential to impact up to 254,000 Medicare beneficiaries.
The data potentially compromised may have included names; addresses; dates of birth; phone numbers; Social Security numbers; Medicare beneficiary identifiers; banking information including routing and account numbers; and Medicare entitlement, enrollment and premium Information.