DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

Reventics notifying patients of ransomware incident

Posted on February 19, 2023 by Dissent

Reventics LLC is a business associate in Colorado offering revenue cycle management,  clinical documentation, and quality improvement services. On or about December 15, 2022, Reventics detected some anomalies in its systems and discovered an intrusion and encryption of its files. Some of those files contained protected health information (PHI) of patients. On December 27, an investigation by external consultants confirmed that PHI had been accessed and exfiltrated.

The information that may have been compromised potentially included first and last name, date of birth, healthcare provider’s name and address, health plan name, the numeric codes used to identify services and procedures patients received, and descriptions of these codes.

In a notification letter submitted to the Montana Attorney General’s Office on February 10, Reventics notes, “At this time, we have no confirming evidence this information has been used by the cyber-intruder.”

On February 13, the Royal ransomware group added Reventics to their dark web leak site, leaking more than 16 GB of files. Royal claims those files are only 10% of what they exfiltrated. DataBreaches has not yet been able to examine the leaked data because (perhaps happily for its victims) Royal’s server is abysmally slow.

Reventics does not appear to have updated its website notice to address the dumping of any data on the internet. It is offering those affected services through IDX. Reventic’s website notice, which is not quite identical to its notification template sent to Montana, also states:

In response to this event, Reventics implemented new technical safeguards, including, without limitation, adopting new encryption controls, performed a new/updated security risk analysis, is providing individuals with free credit and identity monitoring, revised its policies and procedures, and retrained workforce members.

The total number of patients being notified was not revealed in their notices, and their report to HHS has not yet appeared on HHS’s website or state websites that report numbers. The only number currently available reveals that Reventics informed the Montana Attorney General that 1,027 Montana residents were being notified.

This post will be updated after the total number of patients is available. There is currently no list of affected clients.


Update: Reventics reported the incident to HHS on February 10 as affecting 250,918 patients. HHS just added the listing on February 23. DataBreaches also notes that the notice on Reventics’ website mentions more data elements that may have been involved than its February notice to Montana, and makes no mention of any ransomware or data leak.  The data elements mentioned in their website notice are: first and last name, date of birth, Social Security number, financial information, healthcare provider’s name and address, health plan name, clinical data, numeric codes used to identify services and procedures, and brief descriptions of the codes.

No related posts.

Category: Breach Incidents

Post navigation

← The Feds Are Launching a Hack Back Squad
Edgepark Medical Supplies notifies patients of Rise Interactive Media & Analytics data breach →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Alert: Scattered Spider has added North American airline and transportation organizations to their target list
  • Northern Light Health patients affected by security incident at Compumedics; 10 healthcare entities affected
  • Privacy commissioner reviewing reported Ontario Health atHome data breach
  • CMS warns Medicare providers of fraud scheme
  • Ex-student charged with wave of cyber attacks on Sydney uni
  • Detaining Hackers Before the Crime? Tamil Nadu’s Supreme Court Approves Preventive Custody for Cyber Offenders
  • Potential Cyberattack Scrambles Columbia University Computer Systems
  • 222,000 customer records allegedly from Manhattan Parking Group leaked
  • Breaches have consequences (sometimes) (1)
  • Kansas City Man Pleads Guilty for Hacking a Non-Profit

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • Germany Wants Apple, Google to Remove DeepSeek From Their App Stores
  • Supreme Court upholds Texas law requiring age verification on porn sites
  • Justices nix Medicaid ‘right’ to choose doctor, defunding Planned Parenthood in South Carolina
  • European Commission publishes its plan to enable more effective law enforcement access to data
  • Sacred Secrets: The Biblical Case for Privacy and Data Protection
  • Microsoft’s Departing Privacy Chief Calls for Regulator Outreach
  • Nestle USA Settles Suit Over Job-Application Medical Questions

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.