A data breach affecting nearly 140,000 individuals was disclosed by Vikor Scientific, now Vanta Diagnostics, due to compromised credentials at Catalyst RCM, a provider of revenue cycle management solutions. The breach, linked to the Everest ransomware group, involved the theft of personal and medical information from Vikor and its affiliates.
The key insight from the content is that the data breach affecting nearly 140,000 individuals, originally linked to Vikor Scientific, actually stemmed from compromised credentials at Catalyst RCM, a third-party service provider. This highlights the critical need for robust third-party risk management and monitoring, particularly in healthcare, where sensitive data is frequently managed by external vendors. For cybersecurity professionals, ensuring strong security protocols and incident response plans across third-party partners is essential to mitigate such indirect attack vectors.