On May 22, 2024, Lash Group, a division of Cencora, reported a significant data breach impacting patients enrolled in Novartis Pharmaceuticals Corporation’s support programs. This breach, which was detailed in a notice to the Attorney General of California, involved unauthorized access to sensitive patient information including names, addresses, dates of birth, medical details, and prescription medications. The breach was discovered on February 21, 2024, when Cencora identified that certain data stored on its IT network had been exfiltrated. Following this discovery, Lash Group, with assistance from law enforcement and cybersecurity experts, contained the breach and launched a thorough investigation.
The investigation confirmed that information belonging to specific Novartis patients had been compromised. By April 10, 2024, Lash Group verified the extent of the data exposure and began reviewing the compromised files to determine the specific information affected for each individual. Subsequently, on May 22, 2024, Lash Group sent data breach notification letters to all impacted individuals, informing them about the compromised data and the potential risks involved.
For patients affected by this breach, it is critical to understand the potential implications of their data being exposed. A data breach lawyer can provide valuable assistance in protecting against fraud or identity theft and exploring legal options following this incident. Lash Group has recommended that affected individuals remain vigilant and take necessary steps to safeguard their personal information.
Lash Group, a provider of patient access services to pharmaceutical companies, has been in operation since 1986 and is based in Fort Mill, South Carolina. Novartis, a major multinational pharmaceutical company headquartered in Basel, Switzerland, produces several widely used medications and generates substantial annual revenue. Both companies are now focused on addressing the aftermath of this data breach and enhancing their security measures to prevent future incidents.
