According to a report in the Dayton Daily News, the company that provides data management services to Ohio Medicaid providers, Maximus, recently experienced a serious data breach. This breach likely exposed the personal data of all Ohio Medicaid providers, including the provider’s names, social security numbers, and addresses.
Luckily those covered by Medicaid in the state were not included in the breach. Maximus and Ohio Medicaid are currently undertaking a forensic investigation of the incident, which apparently affected only the application used for Medicaid credentialing and licensing in the state.
A Maximus company statement explained that they ““promptly took the impacted application offline, launched an investigation with a leading cybersecurity firm, activated response protocols, and notified law enforcement.” after discovering the unauthorized access in mid-May of this year. The affected providers were notified via letter on the 18th of June and are being offered two years of credit monitoring services. The investigation is still ongoing.
Email: Phone: 703.359.0700
Digital Forensics/Cybersecurity/Information Technology