RWJBarnabas Health has received notification that one of its vendors was affected by the MOVEit ransomware attack, leading to an unauthorized user gaining access and potentially extracting RWJBarnabas Health patient information.
Welltok, Inc. (Welltok), a Virgin Pulse company, operates an online contact-management platform that enables RWJBarnabas Health to provide patients and members with important notices and communications.
On July 26, 2023, WellTok was alerted to an earlier alleged compromise of its MOVEit Transfer server. After a full reconstruction of WellTok’s systems and historical data, its investigation determined on August 11, 2023, that an unknown actor exploited software vulnerabilities, accessed the MOVEit Transfer server on May 30, 2023, and exfiltrated certain data from the MOVEit Transfer server during that time. Welltok confirmed it moved quickly to apply available patching, undertook recommended mitigation steps and launched an internal investigation, with the assistance of third-party cybersecurity specialists, to determine the potential impact of the vulnerabilities’ presence on the MOVEit Transfer server and the security of data housed on the server. On October 13, 2023, Welltok provided RWJBarnabas Health with more detailed information on the scope of the incident.
Welltok is notifying impacted patients of this incident via mailed letters that include an explanation of available services, resources and recommendations for patients to monitor any potential inappropriate use of their personal information. We have no evidence that any patient information has been misused, and the type of affected information may vary among patients. The type of information that may have been impacted could include social security number, date of birth, patient contact information and medical treatment information.
If individuals have questions or would like additional information, they may call Welltok’s dedicated assistance line at 800-628-2141 between the hours of 9:00 a.m. and 11:00 p.m. ET, Monday through Friday, and on Saturday and Sunday between the hours of 11:00 a.m. to 8:00 p.m. ET excluding major U.S. holidays. Be prepared to provide engagement number B107737.