Cyber Incident Victim: Benefit Recovery Specialists, Inc.

Benefit Recovery Specialists, Inc. (BRSI), a Houston-based billing and collections company serving healthcare providers and payers, experienced a significant data breach after detecting malware on its systems. The malicious software infiltration, discovered during an internal investigation, potentially enabled unauthorized actors to access and exfiltrate sensitive personal and protected health information (PHI). The compromise impacted 274,837 individuals whose data was processed by BRSI for billing-related services. Forensic analysis determined the attack commenced on April 20, 2020, with confirmed unauthorized access to customer files occurring between April 20 and April 30, 2020. The malware’s presence created a window during which attackers could view and obtain confidential records stored on BRSI’s compromised infrastructure.

Exposed information included names, dates of birth, healthcare provider names, insurance policy identification numbers, and, for a subset of individuals, Social Security numbers. BRSI initiated customer notification procedures on June 2, 2020, approximately six weeks after concluding its investigation into the breach’s scope and timeline. The company advised affected individuals to remain vigilant against potential identity theft and fraudulent activity stemming from the exposure of their sensitive data. No specific details regarding malware variant, attack vector, or containment measures were publicly disclosed beyond the confirmation of malware as the intrusion mechanism. The incident disrupted BRSI’s operations during the investigation period and necessitated engagement with forensic specialists to assess the breach’s technical origins and data impact.