Morton Drug Company, known as Morton LTC, is a Wisconsin-based pharmacy that focuses its services on the long-term care sector. The company recently announced a significant security incident that has potentially compromised the private data of 40,051 individuals. The breach was discovered when the company’s internal IT systems were impacted by the security event.
The timeline of the incident began with the detection of the compromise on or around August 20, 2025. Upon discovering the breach, Morton LTC immediately engaged external, specialized cybersecurity experts. These third-party professionals were brought in to conduct a comprehensive investigation, implement containment measures, and ultimately remediate the affected systems to restore security. Additionally, the company took the necessary step of notifying law enforcement officials about the unauthorized access.
GET 50% Discount for VPN/ANTIVIRUS SOFTWARE AT 911Cyber - CODE: bit5025
The subsequent investigation confirmed that unauthorized access to the company’s network had indeed occurred. Following this confirmation, a detailed and meticulous review was initiated to precisely determine the scope of the incident, specifically focusing on the extent to which sensitive data was exposed and whether it had been exfiltrated or stolen from the systems.
It was determined on or around October 21, 2025, after the extensive review process, that patient data had been exposed during the unauthorized access and may have been stolen by the malicious actor. The type of personal information involved in the breach is not uniform across all affected individuals. The exposed data may include an individual’s name paired with their address, specific prescription information, and, for certain individuals within the group, their Social Security numbers.
As of the disclosure, Morton LTC has stated that no definitive evidence has surfaced to indicate that the affected data has been misused by the unauthorized party. Nevertheless, as a precautionary measure, the company has advised all individuals who were affected by the breach to exercise caution and remain highly vigilant against potential identity theft and fraudulent activities. Morton LTC has also confirmed that it has already implemented several enhanced security steps and measures intended to prevent any similar security incidents from occurring in the future.
Source: Data Breach Announced By Morton Drug Company Affecting Customers In Wisconsin