CMS Warns of Breach Impacting 254,000 Medicare Beneficiaries

Initial information indicates that Healthcare Management Solutions acted in violation of its obligations to CMS.

By HFT Staff
December 20, 2022

The Centers for Medicare & Medicaid Services (CMS) is responding to a data breach at Healthcare Management Solutions (HMS), a subcontractor of ASRC Federal Data Solutions, LLC (ASRC Federal), that might involve Medicare beneficiaries’ personally identifiable information (PII) and/or protected health information. No CMS systems were breached, and no Medicare claims data were involved. 

Initial information indicates that Healthcare Management Solutions acted in violation of its obligations to CMS and that the incident involving HMS has the potential to impact up to 254,000 Medicare beneficiaries’ personally identifiable information out of the over 64 million beneficiaries that CMS serves. CMS mailed beneficiaries that have been potentially impacted a letter from CMS notifying them directly of the breach. 

“The safeguarding and security of beneficiary information is of the utmost importance to this Agency,” says Chiquita Brooks-LaSure, CMS administrator. “We continue to assess the impact of the breach involving the subcontractor, facilitate support to individuals potentially affected by the incident, and will take all necessary actions needed to safeguard the information entrusted to CMS.” 

The services provided to CMS under the contract with ASRC Federal include resolving system errors related to Medicare beneficiary entitlement and premium payment records. The contractors’ services also support the collection of Medicare premiums from the direct-paying beneficiary population. The contractor does not handle Medicare claims information. 

See the latest posts on our homepage Share

Topic Area: Information Technology

Recent Posts
Recent Posts

California Funds Security for Reproductive Health Facilities

Grants will fund physical and digital security enhancements at healthcare facilities and practitioner offices that might be the target of violence and vandalism.


Methodist Hospital Emergency Department Doubles in Size

The three-year project saw the renovation and expansion of the Methodist Hospital Emergency Department completed.


UCLA Health Alerts Patients of Compromised Data

An analytics tool may have captured and transmitted health data to the third-party service providers.


Healthcare Facilities Embrace Modular Construction

Healthcare facilities have leaned on modular construction for quick builds with less waste.


UPMC Western Behavioral Health Opens New Facility to Increase Community Access

The new facility will expand UPMC’s behavioral health services.



News & Updates • Webcast Alerts • Building Technologies

All fields are required.

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

You Might Like