MedEx Ambulance Breach Exposes Over 118,000 Patient Records Including Medical, Financial, and Identity Information
Medical Express Ambulance Service (MedEx), one of Illinois’ largest private emergency service providers, has confirmed a data breach that compromised the personal, financial, and medical information of more than 118,000 individuals.
The breach occurred in 2024 but was only recently made public through a filing with the Maine Attorney General’s office after a full investigation concluded.
Network Disruption Detected in March 2024
MedEx reported that it first discovered a “network disruption” on March 18, 2024, which immediately triggered system shutdowns. The company engaged a third-party cybersecurity team to contain the threat and investigate the full scope of the intrusion.
According to the completed investigation, threat actors gained access to a broad set of sensitive information, which may include:
- Full names
- Birth dates
- Social Security numbers
- Driver’s license numbers
- Medical and insurance details
- Login credentials
- Passport numbers (for some individuals)
At this time, MedEx states there is no evidence the stolen data has been misused.
“A network disruption was discovered on March 18th, which immediately triggered a shutdown of its systems,” the company reported.
Free Identity Protection Offered to Victims
In response to the breach, MedEx is offering 12 months of free credit monitoring and identity theft protection to all affected individuals. The move is in line with industry practices for breach response, particularly in cases involving sensitive health and identity data.
MedEx Operates 80 Ambulances Across Illinois
Headquartered in Skokie, Illinois, MedEx runs a fleet of more than 80 ambulances and employs over 375 personnel. The company is a critical provider of emergency medical transport in the state and handles a significant volume of patient data through its operations.
Healthcare Sector Faces Increasing Cyber Threats
This breach adds to a growing list of cyberattacks targeting the healthcare and emergency services sector, which has seen a steady rise in incidents. Security gaps in IT infrastructure across these organizations continue to be exploited by cybercriminals.
Other high-impact breaches in recent months include:
- UnitedHealth Group: Data breach affecting 100 million Americans
- Regional Care (RCI): Nearly 250,000 patient records compromised
- Ascension Health: 5.6 million patients affected
- London ransomware attack: Shut down hospitals and rerouted emergency services
Summary of the MedEx Breach:
- Date of Discovery: March 18, 2024
- Individuals Affected: 118,418
- Exposed Data: Medical records, identity details, financial information, login credentials
- Location: Skokie, Illinois
- Response: Systems shut down, forensic investigation, free identity protection for victims
MedEx has not disclosed who was behind the attack. Investigations remain ongoing. The breach underscores the growing threat facing emergency medical service providers in the wake of a rising trend of cyber incidents in healthcare.
