The Record reports:
The world’s largest medical device company is notifying more than 3.8 million people that their data may have been exposed in an attack reportedly linked to the ShinyHunters cybercrime group.
On April 24, Medtronic confirmed an unauthorized party had accessed data in certain corporate IT systems, but said it had not identified any “connections to our customers.” But on June 29, the California Attorney General released a copy of Medtronic’s notification letter, which warned that “as a patient with a Medtronic medical device, our company collects data related to you in order to provide important product-related updates and to meet our legal obligations.”
Social security numbers, health-related data, names, contact information and dates of birth were accessed by the hackers, according to the letter. The company said it has “no evidence that impacted information has been publicly posted or exposed on the internet.”
Read more at The Record.
