AmerisourceBergen Specialty Group Data Breach: Here's What Got Exposed

On February 21, 2024, AmerisourceBergen Specialty Group experienced a significant data breach. The breach involved unauthorized access to the company's information systems, resulting in the exfiltration of sensitive data. This incident affected 305 individuals in Texas, as reported to the Texas Attorney General's office. Additionally, the breach was disclosed to the California Attorney General's office on October 9, 2024.

The exposed information includes personal and medical details such as:

• Name of individual
• Address
• Medical information
• Health insurance information
• Date of birth
• Medical treatment information
• Medical record number

The breach was detected when AmerisourceBergen's parent company noticed unauthorized activity within its systems. Upon discovery, the company took immediate containment steps and launched an investigation with the help of law enforcement, cybersecurity experts, and external legal counsel. As of now, there is no evidence suggesting that the compromised information has been used for fraudulent purposes.

AmerisourceBergen's Response

In response to the breach, AmerisourceBergen has taken several actions to protect affected individuals and prevent future incidents. The company has collaborated with cybersecurity experts to strengthen its systems and information security protocols.

Additionally, AmerisourceBergen is offering affected individuals access to Experian IdentityWorks credit monitoring and remediation services for 24 months at no charge. These services include alerts for changes to credit files and identity restoration assistance.

Steps for Affected Individuals

If you believe you have been affected by this data breach, it is important to take proactive steps to protect your personal information. Here are some recommended actions:

1. Enroll in Credit Monitoring: Take advantage of the free credit monitoring services offered by AmerisourceBergen through Experian IdentityWorks. This will help you receive alerts about any attempts to use your personal information for credit purposes.
2. Review Financial Statements: Carefully examine statements from your bank, credit card companies, and other financial institutions for any suspicious transactions. Report any discrepancies immediately.
3. Order Your Free Credit Report: Obtain your free credit report from AnnualCreditReport.com to check for inaccuracies or unfamiliar accounts.
4. Place a Fraud Alert: Consider placing a fraud alert on your credit file to notify potential creditors to verify your identity before opening new accounts in your name.
5. Consider a Security Freeze: A security freeze can prevent creditors from accessing your credit report without your consent, offering additional protection against identity theft.
6. Report Identity Theft: If you suspect identity theft, report it to local law enforcement, your state's Attorney General, and the Federal Trade Commission (FTC). The FTC's website provides resources and guidance for victims of identity theft.