Latest Insurance Hack Affects 11 Million Customers

 

Premera Blue Cross suffered a hack last May, exposing claims and clinical data affecting 11 million customers, the Pacific Northwest and Alaska insurer has just confirmed.
The breach was discovered on January 29 of this year, the company said in a statement. That's the same day Anthem discovered its data breach, but a Premera Blue Cross spokesperson tells Insurance Networking News that it's not clear whether or not the two incidents are related at this point. 
At the time of the Anthem attack, Jim Grazko, the president of Premera's Alaska business told KTUU in Anchorage that the two insurers were separate entities and it was unlikely that Premera customers who stayed within the Premera system (getting treatment in Washington or Alaska) were exposed in that breach.
Early indications are that this Premera breach included even more sensitive data than Anthem's: "Our investigation determined that the attackers may have gained unauthorized access to applicants and members’ information, which could include member name, date of birth, email address, address, telephone number, Social Security number, member identification numbers, bank account information, and claims information, including clinical information," Premera says in a statement. Clinical, payment and claims data were not part of the Anthem hack.
Like Anthem, Premera is working with the FBI and cybersecurity firm Mandiant to investigate the breach. The company also is offering two years of credit monitoring services to affected customers for free. 
 Info-management  ttp://ow.ly/KFkpd

« Snowden: IT Workers Are Now the Target of Spies
Hackers Extort S. Korea for Data on Nuclear Plants »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

BackupVault

BackupVault

BackupVault is a leading provider of completely automatic, fully encrypted online, cloud backup.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

Cyber Security Supplier Directory

Cyber Security Supplier Directory

Free Access: Cyber Security Supplier Directory listing 5,000+ specialist service providers.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

Brinqa

Brinqa

Brinqa is a leading provider of unified risk management and security analytics.to manage IT governance and technology risk.

SentinelOne

SentinelOne

SentineOne is a Next Generation Endpoint Security Solution. Predict, prevent, detect and respond, at machine speed.

Schneider Electric

Schneider Electric

Schneider Electric develops connected technologies and solutions to manage energy and process in ways that are safe, reliable and sustainable.

SCIPP International

SCIPP International

SCIPP’s courses are based on internationally recognized best business practices for security awareness, for both technical and non-technical staff and to comply with regulatory mandates.

Global Cyber Alliance (GCA)

Global Cyber Alliance (GCA)

Global Cyber Alliance is an international, cross-sector effort dedicated to eradicating cyber risk and improving our connected world.

Data443 Risk Mitigation

Data443 Risk Mitigation

Data443 Risk Mitigation provides next-generation cybersecurity products and services in the area of data security and compliance.

Randstad

Randstad

Randstad provide outsourcing, staffing, consulting and workforce solutions in the USA across a wide range of job sectors including IT and cybersecurity.

Get Indemnity

Get Indemnity

Get Indemnity are specialist insurance brokers with experience working on a wide range of innovative business insurance products that combine risk management, indemnity and incident response services.

Trustify

Trustify

Trustify is a Managed Security Service Provider offering a suite of world-class Cyber Risk Management services.

Wiz

Wiz

Wiz - the first cloud visibility solution for enterprise security: A 360° view of security risks across clouds, containers and workloads.

Capital Network Solutions

Capital Network Solutions

Capital Network Solutions are a highly accredited managed IT services and consultancy provider, specialising in cyber security, infrastructure and communications.