UPDATE ON CYBERSECURITY
May 15, 2023
Consistent with our obligation to keep our stakeholders informed, we issue this update to confirm a data breach which affected several well-known companies across the globe, including Intellicare. Threat actors, known as CL0P, exploited a zero-day vulnerability found in Intellicare’s third-party tool called GoAnywhere Managed File Transfer Solution (GoAnywhere MFT). Independent forensic investigation revealed the theft of limited amount of information, which did not include contact details, medical information and government issued numbers. We have already appraised the National Privacy Commission in accordance with the reporting requirements of the Data Privacy Act of 2012. Notifications were also sent to the data subjects. Any data subject who wishes to check if he/she was affected by the breach may verify here:
Intellicare – Data Check Portal
Although the breach was unforeseeable, Intellicare has demonstrated its preparedness to respond to cybersecurity threats of this magnitude. Our Security Team has demonstrated its commitment to uphold privacy by diligently working to determine and contain the breach. As part of our measures to further strengthen our security, we have deployed Multifactor Authentication Protocols for all our systems, initiated the retraining on privacy and cybersecurity of all our employees, and engaged with experts to conduct information security assessments. Our commitment to invest in the latest technologies and in the skills of our people to ensure effective and prompt surveillance of cybersecurity threats was significantly reinforced by this event.
At Intellicare, the privacy and security of our employees, members, and clients are taken seriously. We will remain vigilant and proactive with a firm assurance to protect the data entrusted to us by implementing security protocols that meet global standards.
For any other questions or concerns, you may also reach us at email@example.com.
INTELLICARE DATA PRIVACY OFFICE & INFORMATION SECURITY RISK OFFICE