The Centers for Medicare and Medicaid Services (CMS) has announced that nearly 1 million people with Medicare may have had their personal and health information compromised due to a security breach in the MOVEit file transfer software. Wisconsin Physicians Service Insurance Corporation (WPS), a CMS contractor handling Medicare claims, was among many US organizations affected by the vulnerability.

CMS and WPS are notifying 946,801affected individuals by mail, offering credit monitoring services and new Medicare cards for those impacted. While no misuse of data has been reported, the agencies are working with law enforcement to investigate the breach and ensure the security of Medicare beneficiaries’ information.