A data breach involving a medical collection agency affected more than 200,000 patients who had used the firm's online payment portal between September, 2018 and the beginning of March, 2019. At the end of February, Gemini Advisory analysts identified a Card Not Present (CNP) database that had been posted for sale in a dark web market..