Postal Prescription Services Customers Have Their Data Exposed

  • By Steven
  • Published: Mar 30, 2023
  • Last Updated: Mar 30, 2023

Postal Prescription Services Data Breach

Postal Prescription Services is an Oregon-based mail-order medication business that sends medication to thousands of customers. It began associating with Kroger recently, and around the time of that merger, it suffered from a data leak. The grocery store chain Kroger is spread out over more than 2,800 separate locations, has over 465,000 employees, and serves millions of customers each year. As a result, many customers had some of their data exposed due to a mistake that was made. 

How Did the Attack Occur?

“Attack” isn't the right term for this Kroger data incident. Instead of hackers intentionally breaking into the file network or something, data was leaked due to mistakes made when combining PPS data with that of Kroger. When PPS, a mail-order pharmacy in Portland, Oregon, joined forces with Kroger, PPS members were given Kroger accounts using their patient names and email addresses. This information was exposed to the general public for many years. The information wasn't made secure because mistakes were made when transferring patient data to create those accounts. This is a minor issue overall due to how little information was involved, but it's still worth noting, especially because it impacts so many patients. 

What Information Was Viewed or Stolen?

Between July 2014, and January 13, 2023, PPS users had their email addresses and full names exposed on the internet. This information isn't highly invasive, but it is enough to make users vulnerable to phishing attacks and other issues. More than 82,000 customers had their information exposed, and it isn't likely that Kroger or PPS will send out individual letters notifying patients their information was involved since no Social Security numbers or financial data was exposed. 

How Did Postal Prescription Services Admit to the Breach?

Postal Prescription Services made a statement to the public about the incident, explaining what information was exposed and why the information was made available. An internal error caused this issue to occur for many years, though PPS didn't explain what the error was that led to the problem. 

What Will Become of the Stolen Information?

Tens of thousands of people had their names and email addresses stolen from PPS. This information isn't enough for identity theft purposes, but it is enough to launch more convincing phishing attacks. Hackers use any personal information they have in phishing campaigns in an effort to trick people into providing more of their information. Most attackers use whatever information they have access to, in order to create more convincing phishing attempts, making customers feel like they're dealing with a legitimate company that's asking for information. 

What Should Affected Parties Do in the Aftermath of the Breach?

If you believe your PPS information was shared in this data breach, you should be careful to avoid clicking on strange links in your email. You should also avoid sharing personal information through your email and don't trust unfamiliar organizations or strange email accounts. Never provide passwords through your email, and only reset passwords at trustworthy websites. Taking these precautions will help protect you from most phishing attacks and should reduce any risks caused by this basic data breach.

About the Author
IDStrong Logo

Related Articles

Instagram Vulnerability Allowed Hackers Access to Control Your Phone

Security experts Check Point Research discovered a critical vulnerability while examining Instagra ... Read More

Alien Malware Infects More than 226 Mobile Apps and Steals Bank Data

As reported on September 24, 2020, by ZDNet and ThreatPost, a new strain of malware named “A ... Read More

Universal Health Systems Hit by Ransomware Attack

Universal Health Systems (UHS), a Fortune 500 company owning more than 400 hospitals across the co ... Read More

Exchange Server Bug Exposes a Big Risk to Hackers

Months after Microsoft released a patch to fix a serious flaw in MS Exchange Server, more than 61% ... Read More

Clients’ Bank Data Exposed in Blackbaud Ransomware Attack

Blackbaud software was victim to a ransomware attack last May, and new information suggests that c ... Read More

Latest Articles

Google Voice Scams: What They Are and How to Stay Safe

Google Voice Scams: What They Are and How to Stay Safe

Google Voice scams continue to pose a risk for users of this service. Scammers continuously attempt to lure users into divulging their verification PIN code.

What Are Pretexting Attacks: Scam Types and Security Tips?

What Are Pretexting Attacks: Scam Types and Security Tips?

Have you ever received a text from someone you do not know? Did you become alarmed by the message? Did the message contain information about you and the people you know?

What is a Time-based One-time Password (TOTP)?

What is a Time-based One-time Password (TOTP)?

Authentication is the process that verifies the user's identity to control access to resources, prevent unauthorized users from gaining access to the system, and record user activities (to hold them accountable for their activities).

Featured Articles

How to Buy a House with Bad Credit

How to Buy a House with Bad Credit

Buying your own home is the American Dream, but it might seem out of reach to those with bad credit. However, the good news is, if your credit is less than perfect, you do still have options and in most cases, can still buy a home.

How Secure Is Your Password? Tips to Improve Your Password Security

How Secure Is Your Password? Tips to Improve Your Password Security

Any good IT article on computers and network security will address the importance of strong, secure passwords. However, the challenge of good passwords is that most people have a hard time remembering them, so they use simple or obvious ones that pose a security risk.

Top 10 Senior Scams and How to Prevent Them

Top 10 Senior Scams and How to Prevent Them

Senior scams are becoming a major epidemic for two reasons. First, seniors often have a lot of money in the bank from a life of working hard and saving.

Notice

By proceeding with this scan, you agree to let IDStrong run a Free Scan of supplied parameters of your personal information and provide free preliminary findings in compliance with our Terms of Use and Privacy Notice. You consent to us using your provided information to complete the Free Scan and compare it against our records and breach databases or sources to provide your Free preliminary findings report.

Rest assured: IDStrong will not share your information with third parties or store your information beyond what is required to perform your scan and share your results.

Free Identity Threat Scan
Instantly Check if Your Personal Information is Exposed
All fields below are required
Please enter first name
Please enter last name
Please enter a city
Please select a state
Please enter an age
Please enter an email address
Close