Medjet Data Breach Affects 14,400 Individuals in U.S.

On October 17, 2023, Medjet and MedjetAssist, the premier global air medical transport and travel security membership program, experienced a significant data breach. The company's computer network was disrupted by malware, rendering certain systems temporarily offline. Medjet managed to restore its systems to normal business operations without significant impact on its services. However, an investigation revealed that sensitive data might have been taken during the unauthorized access period.

By December 5, 2023, Medjet learned that certain data from its network could have been compromised. A thorough review of their server data confirmed on May 10, 2024, that sensitive information was indeed present within their files at the time of the incident. The breach affected approximately 14,400 individuals across the United States, including 380 residents in Texas and 9 residents in Maine.

Information Exposed

• Name of individual
• Address
• Social Security Number
• Driver’s License number
• Government-issued ID number (e.g., passport, state ID card)
• Medical Information
• Health Insurance Information

Following the discovery of the breach, Medjet took several steps to mitigate the potential harm and prevent future incidents. The company revised its network architecture and partnered with computer forensics professionals to thoroughly investigate the incident. They have implemented complex password requirements and multi-factor authentication to enhance security measures.

Medjet has also provided written notifications to the impacted individuals, including Maine residents, by U.S. regular mail. The company is offering 12 months of identity theft monitoring and restoration services through Kroll at no cost to those affected.

Steps for Affected Individuals to Take

If you believe you have been affected by this data breach, it is crucial to remain vigilant. Here are some steps you can take:

1. Monitor Your Accounts: Regularly review your account statements and credit reports for any suspicious activity. You are entitled to one free credit report every 12 months from each of the three major credit reporting companies. Visit annualcreditreport.com or call (877) 322-8228 to obtain your free report.
2. Place a Fraud Alert: Contact the nationwide credit reporting agencies to place a fraud alert on your credit file. This will notify businesses to verify your identity before opening new accounts in your name.
3. Consider a Security Freeze: A security freeze restricts access to your credit file, making it harder for identity thieves to open new accounts. You can place a freeze by contacting the credit reporting agencies directly.
4. Report Suspected Fraud: If you detect any unauthorized activity, report it to your financial institution, local law enforcement, your state attorney general, and the Federal Trade Commission.
5. Utilize Identity Monitoring Services: Take advantage of the 12 months of identity theft monitoring and restoration services offered by Kroll. Visit Kroll's enrollment page to activate these services.

For more details, you can view the disclosure on the Maine Attorney General's website and the Texas Attorney General's website.