'Unknown Party' Accesses Customer Information At Rite Aid
Rite Aid Mails Letters to Customers Whose Data May Have Been Breached
Customers whose data may have been compromised in a data breach received letters from Rite Aid on July 20.
The business claimed that a security hole in its software allowed a "unknown third party" to access some customers' sensitive information. Rite Aid claimed that a vendor informed them of the occurrence on May 31 and that it quickly installed an update "to address the defect."
According to the business, "Information contained in some of these files included a limited amount of protected health information, including patient first and last names, dates of birth, addresses, prescription information, including medication names and dates of fill, prescriber information, and in some cases, limited insurance information (plan name and cardholder ID).
Rite Aid customers affected by the breach can phone their dedicated assistance line at 866-373-9712, between 9 a.m. and 6:30 p.m., Monday through Friday. This line will be available now through Oct. 19th.
Rite Aid Press Releases:
https://news.riteaid.com/newsroom-home/default.aspx
To learn more about previous issues:
https://www.hhs.gov/hipaa/for-professionals/compliance-enforcement/examples/rite-aid/index.html
https://www.hipaaguidelines101.com/data-breaches-at-behavioral-health-network-and-rite-aid-corporation/