Xsolis says a targeted phishing attack exposed sensitive data belonging to nearly 1.4 million people, including names, addresses, Social Security numbers, and medical information. The company has contained the incident, notified law enforcement and affected individuals, and is offering identity monitoring through Kroll. #Xsolis #Dragonfly #Kroll
Keypoints
- Xsolis detected unauthorized network activity on January 22 after a phishing attack on January 20.
- Attackers accessed files containing customer personal and health-related information.
- The breach affects 1,396,519 individuals, according to data reported to U.S. health authorities.
- Xsolis reset passwords, increased monitoring, and strengthened credential management.
- Affected individuals are being notified by mail and offered 12 months of identity monitoring and restoration services.