Topics
late
AI
Amazon
Image Credits:Eggy Sayoga / Getty Images
Apps
Biotech & Health
Climate
Image Credits:Eggy Sayoga / Getty Images
Cloud Computing
mercantilism
Crypto
enterprisingness
EVs
Fintech
fundraise
Gadgets
Gaming
Government & Policy
computer hardware
layoff
Media & Entertainment
Meta
Microsoft
Privacy
Robotics
Security
societal
Space
startup
TikTok
Transportation
Venture
More from TechCrunch
case
Startup Battlefield
StrictlyVC
Podcasts
video
Partner Content
TechCrunch Brand Studio
Crunchboard
reach Us
Truepill , a digital health startup that provides chemist’s fulfilment services for health care organisation , has confirmed that hacker reach the personal information of more than 2.3 million patients .
Ina data offend noticepublished on its internet site , the caller say Postmeds , the parent caller behind TruePill , experience a “ cybersecurity incident ” that allowed nameless assaulter to gain access to files used for pharmacy management and fulfilment services between August 30 and September 1 .
The fellowship ’s investigation found that the accessed data file hold tender customer information , including patient names , unspecified demographic selective information , medicinal drug case and the name of the patient role ’s prescribing physician . Truepill said Social Security numbers were not imply , as the ship’s company does not receive this info .
Truepill confirmed 2.3 million patients were pretend according to a required legal filing submit to theU.S. Department of Health and Human Services ’ datum breach report portal . Truepill ’s website suppose the party has answer more than three million patients and return 20 million prescriptions since it was founded in 2016 .
Truepill said it was raise its surety protocols and rolling out additional cybersecurity training for employees . The company did not say how its systems were compromise or what specific meter it has implemented to prevent future falling out , and a spokesperson did not respond to TechCrunch ’s questions .
The datum breach — news of which was first divvy up with impacted individuals on October 30 — is already the subject of aclass action case , which alleges that the cybersecurity incident was a verbatim result of Postmeds ’ failure to follow through adequate data security system measure to safeguard customer information . Specifically , the complaint accuses the company of not encrypting sensitive health care information stored on its servers .
Last workweek , Truepillsettled with the U.S. Drug Enforcement Administrationover allegations the pharmacy illegally dispense thousands of prescriptions for controlled meaning .
Join us at TechCrunch Sessions: AI
Exhibit at TechCrunch Sessions: AI
“ With this settlement , Truepill has accepted responsibility for operating an unregistered online pharmacy , filling ethical drug for Schedule II controlled substances in excess of the 90 - day boundary and filling prescription written by medical providers who did not have the required licenses , all in assault of federal law , ” the DEA indite in a press release on November 6 .
Truepill , a digital health unicorn , conducts fourth round of layoffs in 2022
