MedReview, a payment integrity organization based in New York, recently reported a data breach to the Attorney General of Massachusetts. The company discovered the breach on September 5, 2024, when it became aware that sensitive personal information within its systems may have been exposed. Upon discovering the breach, MedReview immediately launched an investigation to understand the nature of the incident and determine what data had been affected.
After conducting its investigation, MedReview confirmed that a range of personal information may have been compromised. This includes sensitive details such as names, Social Security numbers, addresses, dates of birth, salary ranges, and 401(k) account balances. The company has indicated that the specific information exposed varied depending on the individual, and it began sending notifications to affected individuals on September 19, 2024.
In addition to informing the affected parties, MedReview is providing 24 months of complimentary credit monitoring services to help protect individuals from potential misuse of their data. The company’s breach notification includes a detailed list of the specific information compromised, and recipients are encouraged to activate the credit monitoring services to further secure their personal information. The offering is intended as a precautionary measure to mitigate the risks associated with identity theft and fraud.
MedReview has been a key player in the healthcare industry since its founding in 1974. The company specializes in pre- and post-pay billing audits, clinical reviews, and payment integrity services, which help payors identify and avoid overpayments on medical claims. Headquartered in New York, MedReview employs over 200 people and continues to provide services that promote payment integrity, quality assurance, and utilization management for healthcare organizations.
Reference:
