AllCare is a leading medical staffing provider that works with local and regional medical facilities to offer nurses and other staff members. The service helps maintain the supply of healthcare workers throughout the country. This service recently suffered from a breach that may have exposed healthcare workers as well as patients.
The AllCare data breach occurred because attackers sent phishing emails to company employees and tricked at least a few of them into providing account access. Once they gained access to employee email accounts, the attackers were able to access private personal and health-related information for AllCare customers.
The AllCare breach took place on June 21, 2022. At that time, the phishing scams were successful, and one or more attackers got into employee email accounts. That was the start of the problems for AllCare. The company eventually restored security to the accounts and engaged in a complete investigation to determine what information was shared.
The AllCare data breach impacts staff members working for the company, health facilities relaying information through AllCare, and patients that trusted their information to the providers at AllCare specifically. If you were impacted by this attack, you will receive a letter from AllCare explaining what information could have been shared. You'll also have access to 24 months of complimentary identity theft protection services. Use them to protect yourself and watch your accounts for future issues.
The AllCare breach gave access to employee email accounts to the attackers. These accounts contained hundreds of documents that exposed many different people.