
PFC USA Company Cyber Security Posture
pfcusa.comSince 1904, PFC USA has provided accounts receivable management solutions for healthcare providers and currently serves over 1,200 healthcare providers, hospitals and healthcare systems nationally. With Omnichannel Preferred Solutions (OPS) offered through PFC USA, patient communication is streamlined to provide a tailored solution utilizing AI and RPA for patient engagement. With a focus on touch points, such as text reminders, email notifications, and mobile e-billing, patients pay up to 11 days faster when compared to traditional letters and phone calls. Optimized patient engagement not only increases your bottom line by providing convenient tools to pay and interact with your facility, but also sends a clear message that you understand how unique each patient is and your commitment to delivering a superior customer experience to your community. By integrating advanced patient engagement solutions, PFC USA has successfully returned more than $2 billion to our clients over the last decade. As an HFMA Peer Reviewed company for over 13 years, PFC USA helps our partners improve patient communication and increase cash flow while integrating with your facility. From first party billing and self-pay follow up to third party debt recovery and our aged receivables purchasing program, PFC USA ensures your revenue cycle and patient engagement is optimized.
PFC USA Company Details
professional-finance-company-inc.
108 employees
3163.0
52
Financial Services
pfcusa.com
Scan still pending
PFC_2832795
In-progress

Between 800 and 900
This score is AI-generated and less favored by cyber insurers, who prefer the TPRM score.

.png)

PFC USA Company Scoring based on AI Models
Model Name | Date | Description | Current Score Difference | Score |
---|---|---|---|---|
AVERAGE-Industry | 03-12-2025 | This score represents the average cybersecurity rating of companies already scanned within the same industry. It provides a benchmark to compare an individual company's security posture against its industry peers. | N/A | Between 800 and 900 |
PFC USA Company Cyber Security News & History
Entity | Type | Severity | Impact | Seen | Url ID | Details | View |
---|---|---|---|---|---|---|---|
PFC | Ransomware | 100 | 6 | 05/2022 | PFC16198722 | Link | |
Rankiteo Explanation : Attack threatening the economy of a geographical regionDescription: Professional Finance Company, Inc. (โPFCโ) suffered a data breach incident after its systems were infected with ransomware that impacted 657 healthcare providers across the United States. The breach compromised the first and last names, addresses, dates of birth, Social Security numbers, health insurance information, and medical treatment information. The attack disabled the companyโs computer system and the unauthorized party orchestrating the attack to view patient data. PFC notified all the health providers of the breach which is considered the largest healthcare data breach of the year. | |||||||
Professional Finance Company, Inc. | Ransomware | 100 | 4 | 2/2022 | PRO048072825 | Link | |
Rankiteo Explanation : Attack with significant impact with customers data leaksDescription: The California Office of the Attorney General reported that Professional Finance Company, Inc. experienced a ransomware attack on February 26, 2022, affecting personal information of individuals. The incident potentially exposed names, addresses, accounts receivable balances, payment information, and social security numbers, but did not compromise medical records or financial account information. The breach was reported on July 1, 2022. |
PFC USA Company Subsidiaries

Since 1904, PFC USA has provided accounts receivable management solutions for healthcare providers and currently serves over 1,200 healthcare providers, hospitals and healthcare systems nationally. With Omnichannel Preferred Solutions (OPS) offered through PFC USA, patient communication is streamlined to provide a tailored solution utilizing AI and RPA for patient engagement. With a focus on touch points, such as text reminders, email notifications, and mobile e-billing, patients pay up to 11 days faster when compared to traditional letters and phone calls. Optimized patient engagement not only increases your bottom line by providing convenient tools to pay and interact with your facility, but also sends a clear message that you understand how unique each patient is and your commitment to delivering a superior customer experience to your community. By integrating advanced patient engagement solutions, PFC USA has successfully returned more than $2 billion to our clients over the last decade. As an HFMA Peer Reviewed company for over 13 years, PFC USA helps our partners improve patient communication and increase cash flow while integrating with your facility. From first party billing and self-pay follow up to third party debt recovery and our aged receivables purchasing program, PFC USA ensures your revenue cycle and patient engagement is optimized.
Access Data Using Our API

Get company history
.png)
PFC USA Cyber Security News
Video - 2MDTF Executes Cyber Warfare Scenario During Arcane Thunder 25
None
Data breach at debt collector affects almost 2M healthcare patients
It's the second-largest health data breach this year after the Shields Health Care Group cyberattack in March, the Department of Health andย ...
A ransomware attack on a debt collection firm is one of 2022โs biggest health data breaches
A cyberattack on a little-known debt collection firm affects over 650 healthcare facilities across the U.S..
Future of Army Logistics | Exploiting AI, Overcoming Challenges, and Charting the Course Ahead
Integrating artificial intelligence (AI) into Army logistics can revolutionize supply chain management, optimize resource allocation,ย ...
CACI Segment to Supply Electronic Warfare Backpacks for US Army
The US Army has awarded CACI segment Mastodon Design a $99.9-million contract to deliver electronic warfare (EW) backpack suites for warfighters.
Bradley Manning case signals US vulnerability to 'insider' cyberattack
Bradley Manning case signals US vulnerability to 'insider' cyberattack. The US government says Bradley Manning carried out a cyberattack fromย ...
Hospital ransomware concerns rise after payment vendor breach, North Korea threats
Federal agencies are also warning hospitals about a new ransomware threat that's being used by North Korean hackers to target healthcare andย ...

PFC USA Similar Companies

Nomura
Nomura is a global financial services group with an integrated network spanning approximately 30 countries and regions. By connecting markets East & West, Nomura services the needs of individuals, institutions, corporates and governments through its three business divisions: Wealth Management, Inves

CITIC Limited
CITIC Limited (SEHK: 00267) is one of China's largest conglomerates and a constituent of the Hang Seng Index. Tracing our roots to the beginning of Chinaโs opening and reform, CITIC has grown in step with the country's rise and modernisation. We have built a remarkable portfolio of businesses in com

Credicorp
Somos el grupo financiero lรญder en el Perรบ con una vasta experiencia en el mercado peruano. Contamos con una sรณlida plataforma de Banca Comercial reforzada por una importante presencia en Banca de Inversiรณn en Latinoamรฉrica destinada a desarrollar el potencial de la regiรณn y acompaรฑar a nuestros cli

DNB
We are here. So you can stay ahead. For nearly two hundred years we have acquired and shared knowledge, developed global networks and adapted to modern everyday life. To us, it is important to combine profitability with responsibility. DNB is Norway's largest financial services group and one of t

The Max Group
Max Group: The Max Group is a leading Indian multi-business conglomerate with interests in the Life Insurance, Healthcare, Real Estate and Senior Living industries. In FY2019, the Group recorded consolidated revenue of Rs. 24,134 Cr. It currently has a total customer base of 9 million, around 340 o

FE CREDIT
We were founded as Consumer Finance Division of Vietnam Prosperity Joint-Stock Commercial Bank (VPBank). In 2015, we successfully transferred to an independent company with the Brand FE CREDIT. Since then, we continuously have been enlarging and taking the leadership of the consumer finance market i

Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
PFC USA CyberSecurity History Information
How many cyber incidents has PFC USA faced?
Total Incidents: According to Rankiteo, PFC USA has faced 2 incidents in the past.
What types of cybersecurity incidents have occurred at PFC USA?
Incident Types: The types of cybersecurity incidents that have occurred incidents Ransomware.
How does PFC USA detect and respond to cybersecurity incidents?
Detection and Response: The company detects and responds to cybersecurity incidents through communication strategy with PFC notified all the health providers of the breach.
Incident Details
Can you provide details on each incident?

Incident : Ransomware Attack
Title: Ransomware Attack on Professional Finance Company, Inc.
Description: The California Office of the Attorney General reported that Professional Finance Company, Inc. experienced a ransomware attack on February 26, 2022, affecting personal information of individuals. The incident potentially exposed names, addresses, accounts receivable balances, payment information, and social security numbers, but did not compromise medical records or financial account information. The breach was reported on July 1, 2022.
Date Detected: 2022-02-26
Date Publicly Disclosed: 2022-07-01
Type: Ransomware Attack

Incident : Data Breach
Title: Professional Finance Company, Inc. Data Breach
Description: Professional Finance Company, Inc. (โPFCโ) suffered a data breach incident after its systems were infected with ransomware that impacted 657 healthcare providers across the United States.
Type: Data Breach
Attack Vector: Ransomware
What are the most common types of attacks the company has faced?
Common Attack Types: The most common types of attacks the company has faced is Ransomware.
Impact of the Incidents
What was the impact of each incident?

Incident : Ransomware Attack PRO048072825
Data Compromised: names, addresses, accounts receivable balances, payment information, social security numbers

Incident : Data Breach PFC16198722
Data Compromised: first and last names, addresses, dates of birth, Social Security numbers, health insurance information, medical treatment information
Operational Impact: The attack disabled the companyโs computer system
What types of data are most commonly compromised in incidents?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are names, addresses, accounts receivable balances, payment information, social security numbers, first and last names, addresses, dates of birth, Social Security numbers, health insurance information and medical treatment information.
Which entities were affected by each incident?

Incident : Data Breach PFC16198722
Entity Type: Company
Industry: Finance
Location: United States
Customers Affected: 657 healthcare providers
Response to the Incidents
What measures were taken in response to each incident?

Incident : Data Breach PFC16198722
Communication Strategy: PFC notified all the health providers of the breach
Data Breach Information
What type of data was compromised in each breach?

Incident : Ransomware Attack PRO048072825
Type of Data Compromised: names, addresses, accounts receivable balances, payment information, social security numbers
Sensitivity of Data: High
Personally Identifiable Information: True

Incident : Data Breach PFC16198722
Type of Data Compromised: first and last names, addresses, dates of birth, Social Security numbers, health insurance information, medical treatment information
Sensitivity of Data: High
Personally Identifiable Information: Yes
References
Where can I find more information about each incident?

Incident : Ransomware Attack PRO048072825
Source: California Office of the Attorney General
Date Accessed: 2022-07-01
Where can stakeholders find additional resources on cybersecurity best practices?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: California Office of the Attorney GeneralDate Accessed: 2022-07-01.
Investigation Status
How does the company communicate the status of incident investigations to stakeholders?
Communication of Investigation Status: The company communicates the status of incident investigations to stakeholders through was PFC notified all the health providers of the breach.
Additional Questions
Incident Details
What was the most recent incident detected?
Most Recent Incident Detected: The most recent incident detected was on 2022-02-26.
What was the most recent incident publicly disclosed?
Most Recent Incident Publicly Disclosed: The most recent incident publicly disclosed was on 2022-07-01.
Impact of the Incidents
What was the most significant data compromised in an incident?
Most Significant Data Compromised: The most significant data compromised in an incident were names, addresses, accounts receivable balances, payment information, social security numbers, first and last names, addresses, dates of birth, Social Security numbers, health insurance information and medical treatment information.
Data Breach Information
What was the most sensitive data compromised in a breach?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were names, addresses, accounts receivable balances, payment information, social security numbers, first and last names, addresses, dates of birth, Social Security numbers, health insurance information and medical treatment information.
References
What is the most recent source of information about an incident?
Most Recent Source: The most recent source of information about an incident is California Office of the Attorney General.
What Do We Measure?
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
