Online Pharmacy Service Ravkoo Discloses Data Breach
United States-based online pharmacy service Ravkoo this week started notifying patients of a data breach that potentially resulted in the exposure of personal information.
Initially discovered in late September, the breach was the result of a cyberattack targeting Ravkoo’s prescription portal, which is hosted on Amazon Web Services (AWS).
The prescription fulfillment service says that some prescription and health information might have been compromised during the incident.
Potentially impacted information, the company notes in the notification letter, also includes names, email addresses, and phone numbers. Ravkoo underlines that no Social Security numbers were compromised, as this type of information is not stored on the targeted portal.
“At this time, Ravkoo does not have any evidence to indicate that any of your personal information has been or will be misused as a result of this incident. Nevertheless, Ravkoo decided to notify you of this incident out of an abundance of caution,” the company told patients.
Ravkoo also says that it has informed the relevant authorities of the incident and it has been working with forensic experts to investigate the incident and strengthen its security posture.
The pharmacy service told the Maine Attorney General’s Office that the data of 105,000 individuals may have been compromised in the incident.