Tennessee-based mobility equipment provider Numotion is facing a serious data breach that exposed sensitive information belonging to nearly half a million people.
The company, known as the largest supplier of wheelchairs and mobility products in the U.S., confirmed the breach after detecting unauthorized access to employee email accounts. The cyberattack occurred multiple times between September 2 and November 18, 2024.
Hackers Targeted Employee Emails Containing Customer Data
Following an internal investigation, Numotion revealed that hackers accessed emails holding private customer information. Some of the compromised data included full names, birth dates, product details, and financial records.
Worryingly, the breach also exposed medical details and health insurance information. A smaller group of victims may have had even more sensitive data leaked, such as Social Security numbers and driver’s license information.
Numotion Urges Customers to Stay Alert Against Identity Theft
So far, there’s no sign that hackers have used the stolen data for fraud or identity theft. However, Numotion is urging affected customers to stay vigilant.
The company recommends that individuals monitor their bank accounts and credit reports closely. This simple step could help detect suspicious activity early and reduce potential risks.
Regulators Notified as Breach Impacts Nearly All Numotion Customers
Numotion reported the breach to the U.S. Department of Health and Human Services (HHS), confirming that 494,000 individuals were affected.
Interestingly, Numotion serves around 400,000 customers based on its website. This number suggests that the breach may have impacted nearly everyone in its database, including former customers or leads.
Repeated Cyberattacks Raise Fresh Concerns Over Numotion’s Security
Unfortunately, this isn’t Numotion’s first cybersecurity incident. In the spring of 2024, the company also suffered a ransomware attack.
During that breach, hackers from the Black Basta ransomware group infiltrated Numotion’s network. They stole sensitive files and encrypted systems between February 29 and March 2.
These repeated attacks are raising serious questions about the company’s cybersecurity measures and ability to protect sensitive customer information.
What Numotion Is Doing Now to Protect Customers
Numotion claims it has implemented stronger security measures to prevent similar attacks. The company is also working with cybersecurity experts to improve its systems.
Meanwhile, customers impacted by the breach are being offered resources to help safeguard their personal information. However, the company stresses that vigilance remains the best defense against potential fraud.
