Cyber Incident Victim: Advanced Health Media
Date:
Nov 2022
Location:
United States of America
Summary
Advanced Health Media experienced a data breach where unauthorized parties accessed company servers containing sensitive consumer information. The compromised data included names, addresses, Social Security numbers, and other identification numbers belonging to individuals involved in pharmaceutical speaking and consulting arrangements facilitated by the company. Following an investigation confirming the exposure, AHM notified affected consumers and reported the incident to regulatory authorities. The organization, which merged with IQVIA and provides compliance management and logistics services to the healthcare industry, secured the breached systems but confirmed that unauthorized access to confidential files had occurred.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 3 motives | 3 techniques |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On approximately November 27, 2022, an unauthorized party gained access to certain servers within Advanced Health Media’s computer network containing sensitive consumer data. AHM discovered the intrusion on December 16, 2022, prompting an immediate investigation to assess the nature and scope of the incident. The investigation confirmed that the unauthorized access occurred around the November 27 date and involved files related to speaking and consulting arrangements organized by AHM on behalf of pharmaceutical representatives and healthcare practitioners. These files contained personally identifiable information belonging to individuals who participated in these engagements. The compromised data included full names, physical addresses, Social Security numbers, and various other identification numbers, though the specific combination of exposed information varied among affected individuals. The breach did not initially reveal how the attackers infiltrated the systems or whether any malware or ransomware was deployed during the incident.
Advanced Health Media completed its review of the compromised files in early 2023 to identify impacted consumers and determine the extent of exposed data. On February 24, 2023, AHM issued individualized data breach notification letters to all affected parties, advising them of the potential risks stemming from the exposure of their sensitive information. That same day, AHM formally reported the breach to the Montana Attorney General’s office as required by state law. The company did not disclose the total number of affected individuals or whether the breach impacted its parent organization, IQVIA, which acquired AHM in 2018. As a provider of compliance management and meeting logistics services for over 40,000 pharmaceutical industry professionals, AHM’s breach exposed data tied specifically to its speaking and consulting engagement operations rather than broader IQVIA systems or clientele. No additional technical containment measures, forensic findings, or post-breach security enhancements were detailed in the regulatory filing or public notifications.