API economy
API security
cloud security
Cyber landscape
Cybersecurity
September 10, 2024

MoveIT Breaches have Lasting Impacts on Wisconsin Medicare

We’ve written before about last year’s moveIT breach- or rather, series of breaches- which were enabled by APIs.

MoveIT Breaches have Lasting Impacts on Wisconsin Medicare

The original moveIT breach started with an injection against an API administrative endpoint, and then data was exfiltrated. It will go down as one of the largest and broadest API-enabled breaches of the past decade, and although it was uncovered last year, the effects are still being felt today.

Wisconsin Medicare

In Wisconsin, nearly a million Medicare users’ personally identifiable information has been exposed as a result of the moveIT breaches of yester-year. These victims have been notified, and Medicare is replacing their cards immediately with new numbers and urging them to inform their healthcare providers. 

 But how did this massive data breach go undetected for so long?

Last May, when the original attacks were first announced, Wisconsin Medicare applied the moveIT patch, and found no evidence that their data had been compromised. However, recent investigations revealed that files had been copied over before the patch was applied.

Now, users are being urged to sign up for free credit monitoring and similar services to ensure their data protection in the future. But this may not be the last of it… If it took over a year for Wisconsin Medicare to realize they had been breached, there could be other victims who still don’t know their PII is compromised. This exposes yet another of the key challenges around off-the-shelf APIs that ship with commercial software - they often lack audit trails that can be relied upon for situations like this. 

Implications

This breach highlights the dangers of API supply chain vulnerabilities. When many applications, groups or providers such as Wisconsin Medicare all rely on the same program- in this instance, moveIT- one vulnerability can cause a ripple effect out to all the connected companies through the supply chain. 

If even one API in use is vulnerable, everyone in the chain is vulnerable. In this way, being interconnected is actually a contingency as it opens users up to even more risks via the original provider.

FireTail can help with your API security posture by giving you full visibility into your API landscape and all the APIs and endpoints in use. To see how it works, schedule a demo here or try out our free tier today.

Lina Romero

Related posts

FireTail Selected for TechCrunch Disrupt’s Startup Battlefield 2024
September 10, 2024

FireTail Selected for TechCrunch Disrupt’s Startup Battlefield 2024

We are thrilled to announce that FireTail has been selected to compete in TechCrunch Disrupt’s prestigious Startup Battlefield 2024! Being part of this prestigious event is an honor and testament to the hard work our team has put into building a cutting-edge API security platform.

Read more
The Challenges of API Logging
August 28, 2024

The Challenges of API Logging

APIs can run almost anywhere, including any type of compute platforms and network infrastructure services on AWS. In this blog, we’ll go over the different types of compute platforms, network infrastructure services, and how they relate to your APIs and API security.

Read more
A View from The C-Suite: The New CIS API Security Guide
August 28, 2024

A View from The C-Suite: The New CIS API Security Guide

FireTail partnered with the Center for Internet Security (CIS) to create an API security community. The end result is the first draft of The CIS API Security Guide, reviewed by cybersecurity experts from around the world before its release. Read more here.

Read more

This site uses cookies

By using this website, you agree to the storing of cookies on your device to enhance site navigation, analyze site usage, and assist in our marketing efforts. View our Privacy Policy for more information.

Got it!