News

Regarding Security

Anthem: Cyber Attack Update Feb 19, 2015

Posted on February 19th, 2015

Below is Member Communication that will be emailed out to the members that we have an email on file. Additionally, we will be sending out directly via US Mail. Here are some important facts:

  • The email will be sent from Anthem, Inc. The subject line will be “Important Message From Anthem, Inc.”
  • Anthem is required to send emails to members due to state breach notification requirements. Members who have provided e-mails to Anthem and have opted in to receiving communications may receive an e-mail directing them to visit AnthemFacts.com to sign up for credit protection services. The email will not ask for personal information and will not link to any websites other than AnthemFacts.com.
  • A copy of the email will be posted on AnthemFacts.com, and is the exact information in the letters members will receive via US Postal Service. We will also include a link to the email design in the FAQ.

To Members:
On January 29, 2015, Anthem, Inc. (Anthem) discovered that cyber attackers executed a sophisticated attack to gain unauthorized access to Anthem’s IT system and obtained personal information relating to consumers who were or are currently covered by Anthem or other independent Blue Cross and Blue Shield plans that work with Anthem. Anthem believes that this suspicious activity may have occurred over the course of several weeks beginning in early December, 2014. As soon as we discovered the attack, we immediately began working to close the security vulnerability and contacted the FBI. We have been fully cooperating with the FBI’s investigation. Anthem has also retained Mandiant, one of the world’s leading cybersecurity firms, to assist us in our investigation and to strengthen the security of our systems.


Consumers Impacted

Current or former members of one of Anthem’s affiliated health plans may be impacted. In addition, some members of other independent Blue Cross and Blue Shield plans who received healthcare services through the BlueCard program in any of the areas that Anthem serves over the last 10 years may be impacted. The Blue Cross and Blue Shield Association’s BlueCard program is a national program that enables members of one Blue Cross and Blue Shield Plan to obtain healthcare services while traveling or living in another Blue Cross and Blue Shield Plan’s service area. Anthem is providing identity protection services to all individuals that are impacted. For a listing of potentially impacted Anthem affiliated health plans and other Blue Cross and Blue Shield companies for which Anthem provides services under the BlueCard program, visit AnthemFacts.com to view a list. You are receiving this message from Anthem as a current or former member of one of these potentially impacted companies.


Information Accessed

The information accessed may have included names, dates of birth, Social Security numbers, health care ID numbers, home addresses, email addresses, employment information, including income data. We have no reason to believe credit card or banking information was compromised, nor is there evidence at this time that medical information such as claims, test results, or diagnostic codes, was targeted or obtained.


Identity Protection Services

Anthem has arranged to have AllClear ID protect your identity for two (2) years at no cost to you. The following identity protection services start on the date of this notice, or the date you previously enrolled in services based on information posted on AnthemFacts.com. You can use them at any time during the next two (2) years after your service begins.


  • AllClear SECURE: The team at AllClear ID is ready and standing by if you need identity repair assistance. This service is automatically available to you with no enrollment required. If a problem arises, simply call 1 -877-263-7995 and a dedicated investigator will do the work to recover financial losses, restore your credit and make sure your identity is returned to its proper condition. AllClear ID maintains an A+ rating at the Better Business Bureau.
  • AllClear PRO: This service offers additional layers of protection including credit monitoring and a $1 million identity theft insurance policy. For a child under 18 years old, AllClear ID ChildScan identifies acts of fraud against children by searching thousands of databases for use of your child’s information. To use the PRO service, you will need to provide your personal information to AllClear ID. To learn more about these services, or to enroll, visit our source of truth www.AnthemFacts.com and click on the AllClear ID link from there. Please note: Additional steps may be required by you in order to activate your phone alerts.


Mailed Notification

Anthem will also individually notify potentially impacted current and former members by U.S. Postal mail with this same specific information on how to enroll in free credit monitoring and identity protection services. These services will be provided to potentially impacted current and former members free of charge. Anthem has also established a dedicated website (AnthemFacts.com) where members can access additional information, including frequently asked questions and answers.


Toll-Free Hotline

Anthem has established a dedicated toll-free number that you can call if you have questions related to this incident. That number is 877-263-7995. We have included contact information for the three nationwide credit bureaus below.


Si necesita información en español, ingrese en antheminforma.com.


Fraud Prevention Tips

Fraud Prevention Tips
We want to make you aware of steps you may take to guard against identity theft or fraud.


We recommend that potentially impacted members remain vigilant for incidents offraud and identity theft, including by reviewing account statements and monitoring free credit reports. In addition, you can report suspected incidents of identity theft to local law enforcement, Federal Trade Commission, or your state attorney general. To learn more, you can go to the FTC’s Web site, at www.consumer.gov/idtheft, or call the FTC, at (877) IDTHEFT (438-4338) or write to Federal Trade Commission, Consumer Response Center, 600 Pennsylvania Avenue, NW, Washington, DC 20580.


You should be aware of scam email campaigns targeting current and former Anthem members. These scams, designed to capture personal information (known as “phishing”), are designed to appear as if they are from Anthem and the emails include a “click here” link for credit monitoring. These emails are NOT from Anthem.

  • DO NOT reply to the email or reach out to the senders in any way.
  • DO NOT supply any information on the website that may open, if you have clicked on a link in email.
  • DO NOT open any attachments that arrive with email.


Anthem is not calling members regarding the cyber-attack and is not asking for credit card information or Social Security numbers over the phone. For more guidance on recognizing scam email, please visit the FTC Website for their article on phishing.


Credit Bureau Information

Equifax
Experian
TransUnion
PO BOX 740241 PO BOX 9532 PO BOX 6790
ATLANTA GA 30374-0241 ALLEN TX 75013 FULLERTON CA 92834-6790
1 -800-685-1111 1 -888-397-3742 1 -800-916-8800
equifax.com experian.com transunion.com


You can obtain additional information from the FTC and the nationwide credit bureaus about fraud alerts and security freezes. You can add a fraud alert to your credit report file to help protect your credit information. A fraud alert can make it more difficult for someone to get credit in your name because it tells creditors to follow certain procedures to protect you, but it also may delay your ability to obtain credit. You may place a fraud alert in your file by calling just one of the three nationwide credit bureaus listed above. As soon as that bureau processes your fraud alert, it will notify the other two bureaus, which then must also place fraud alerts in your file. In addition, you can visit the credit bureau links below to determine if and how you may place a security freeze on your credit report to prohibit a credit bureau from releasing information from your credit report without your prior written authorization:


  • Equifax security freeze: https://www.freeze.equifax.com/Freeze/jsp/SFF_PersonalIDInfo.jsp
  • Experian security freeze: http://www.experian.com/consumer/security_freeze.html
  • TransUnion security freeze: http://www.transunion.com/personalcredit/credit-disputes/credit-freezes.page


For Maryland and North Carolina Residents - You can obtain information from these sources about preventing identify theft:


  • Visit the Federal Trade Commission website at: www.ftc.gov, or call 1 -877-ID-THEFT or write to this address:
    Federal Trade Commission
    600 Pennsylvania Avenue NW
    Washington, DC 20580
  • Maryland:
    Visit the Maryland Office of the Attorney General at: oag.state.md.us/idtheft/index.htm, or call 1 -410-528-8662 or write to this address:
    Consumer Protection Division
    Maryland Office of the Attorney General
    200 St. Paul Place
    Baltimore, MD 21202
  • North Carolina:
    Visit the North Carolina Office of the Attorney General at: http://www.ncdoj.gov/Crime.aspx or call 1 -919-716-6400 or write to this address:
    Attorney General’s Office
    9001 Mail Service Center
    Raleigh, NC 27699-9001


FOR MASSACHUSSETTS RESIDENTS

Under Massachusetts law, you have the right to obtain a police report in regard to this incident. If you are the victim of identity theft, you also have the right to file a police report and obtain a copy of it.


Massachusetts law also allows consumers to place a security freeze on their credit reports. A security freeze prohibits a credit reporting agency from releasing any information from a consumer’s credit report without written authorization. However, please be aware that placing a security freeze on your credit report may delay, interfere with, or prevent the timely approval of any requests you make for new loans, mortgages, employment, housing or other services.


If you have been a victim of identity theft and you provide the credit reporting agency with a valid police report, it cannot charge you to place, lift or remove a security freeze. In all other cases, a credit reporting agency may charge you up to $5.00 each to place, temporarily lift, or permanently remove a security freeze. To place a security freeze on your credit report, you must send a written request to each of the three major consumer reporting agencies listed above.


In order to request a security freeze, you will need to provide the following information:


  1. Your full name (including middle initial as well as Jr., Sr., II, III, etc.);
  2. Social Security number;
  3. Date of birth;
  4. If you have moved in the past five (5) years, the addresses where you have lived over the prior five years;
  5. Proof of current address (e.g., a current utility bill or telephone bill);
  6. A legible photocopy of a government issued identification card (e.g., state driver’s license or ID card or military identification);
  7. If you are a victim of identity theft, a copy of either the police report, investigative report, or complaint to a law enforcement agency concerning identity theft;
  8. If you are not a victim of identity theft, payment by check, money order, or credit card (Visa, MasterCard, American Express or Discover only). Do not send cash through the mail.


The credit reporting agencies have three (3) business days after receiving your request to place a security freeze on your credit report. The credit reporting agencies must also send written confirmation to you within five (5) business days and provide you with a unique personal identification number (PIN) or password, or both that can be used by you to authorize the removal or lifting of the security freeze.


To lift the security freeze in order to allow a specific entity or individual access to your credit report, you must call or send a written request to the credit reporting agencies by mail and include proper identification (name, address, and Social Security number) and the PIN number or password provided to you when you placed the security freeze, as well as the identities of those entities or individuals you would like to receive your credit report or the specific period of time you want the credit report available. The credit reporting agencies have three (3) business days after receiving your request to lift the security freeze for those identified entities or for the specified period of time To remove the security freeze, you must send a written request to each of the three credit reporting agencies by mail and include proper identification (name, address, and Social Security number) and the PIN number or password provided to you when you placed the security freeze. The credit reporting agencies have three (3) business days after receiving your request to remove the security freeze.


Worried about links?

We know you might be concerned about clicking links, so Anthem did not include any in this message. However, some email programs and smart phones automatically add links. Remember, you can always type a web address manually in your browser instead of clicking through from this email.


Anthem: Cyber Attack Update Feb 18, 2015

Posted on February 18th, 2015

2/18/15 – Anthem will be sending this email out today and we will have this posted on our website:

Anthem wants to keep you informed about their actions in response to the cyber-attack. If you have given Anthem your email address, you will soon receive an email about identity protection and credit monitoring services. Anthem is required to send this email due to state laws around breach notifications. The subject line of the email will be “Important Message From Anthem, Inc.” and it will direct you to visit AnthemFacts.com to sign up for credit protection services. The email will not ask for personal information. We encourage you to read the email and visit AnthemFacts.com to sign up for the services provided by Anthem.


Letter to Anthem Members Regarding Cyber Attack

Posted on February 13th, 2015

To Our Members,

Safeguarding your personal, financial and medical information is one of our top priorities, and because of that, we have state-of-the-art information security systems to protect your data. However, despite our efforts, Anthem was the target of a very sophisticated external cyber attack. These attackers gained unauthorized access to Anthem’s IT system and have obtained personal information from our current and former members such as their names, birthdays, medical IDs/social security numbers, street addresses, email addresses and employment information, including income data. Based on what we know now, there is no evidence that credit card or medical information, such as claims, test results or diagnostic codes were targeted or compromised.

Once the attack was discovered, Anthem immediately made every effort to close the security vulnerability, contacted the FBI and began fully cooperating with their investigation. Anthem has also retained Mandiant, one of the world’s leading cybersecurity firms, to evaluate our systems and identify solutions based on the evolving landscape.

Anthem’s own associates’ personal information – including my own – was accessed during this security breach. We join you in your concern and frustration, and I assure you that we are working around the clock to do everything we can to further secure your data.

Anthem will individually notify current and former members whose information has been accessed. We will provide credit monitoring and identity protection services free of charge so that those who have been affected can have peace of mind. We have created a dedicated website - www.AnthemFacts.com - where members can access information such as frequent questions and answers. We have also established a dedicated toll-free number that both current and former members can call if they have questions related to this incident. That number is: 1-877-263-7995. As we learn more, we will continually update this website and share that information with you.

I want to personally apologize to each of you for what has happened, as I know you expect us to protect your information. We will continue to do everything in our power to make our systems and security processes better and more secure, and hope that we can earn back your trust and confidence in Anthem.

Sincerely,

Joseph R. Swedish
President and CEO
Anthem, Inc.

Still have more questions? Read the FAQs


Anthem: FAQs for Employees

Posted on February 13th, 2015

Was my information accessed?

Anthem is currently conducting an extensive IT Forensic Investigation to determine what members are impacted. We are working around the clock to determine how many people have been impacted and will notify all Anthem members who are impacted through a written communication.

What information has been compromised?

Initial investigation indicates that the member data accessed included names, dates of birth, member ID/ social security numbers, addresses, phone numbers, email addresses and employment information.

Who is responsible for this cyber attack or breach?

Anthem is working closely with federal law enforcement investigators. At this time, no one person or entity has been identified as the attacker.

When will I receive my letter in the mail?

We continue working to identify the members who are impacted. We will begin to mail letters to impacted members in the coming weeks.

How can I sign up for credit monitoring/identity protection services?

All impacted members, former members and impacted affiliated plan members will receive notice via mail which will advise them of the protections being offered.

Do the people who accessed my information know about my medical history?

No - our investigation to date indicates there was no diagnosis or treatment data exposed.

Do the people who accessed my information have my credit card numbers?

No, our current investigation shows the information accessed did not include credit card numbers or banking info.

Did this impact all lines of Anthem Business?

At this point in the investigation, it appears that all product lines are impacted except for those current or former Anthem members who had coverage for workers compensation insurance only.

Is my (plan/brand) impacted?

The impacted (plan/brand) include Anthem Blue Cross, Anthem Blue Cross and Blue Shield, Blue Cross and Blue Shield of Georgia, Empire Blue Cross and Blue Shield, Amerigroup, Caremore, Unicare and HealthLink.

How can I be sure my personal and health information is safe with Anthem, Inc.?

Anthem is doing everything it can to ensure there is no further vulnerability to its database warehouses. Anthem has contracted with a global company specializing in the investigation and resolution of cyber attacks. We will work with this company to reduce the risk of any further vulnerabilities and work to strengthen security.

Does this impact Blue Cross and Blue Shield plans not owned by Anthem?

Yes, BlueCard members are impacted. The Blue Cross and Blue Shield Association’s BlueCard is a national program that enables members of one Blue Cross and Blue Shield Plan to obtain healthcare services while traveling or living in another Blue Cross and Blue Shield Plan’s service area. The program links participating healthcare providers with the independent Blue Cross and Blue Shield Plans across the country and in more than 200 countries and territories worldwide through a single electronic network for claims processing and reimbursement.

I think I received a scam email related to Anthem’s cyber attack?

Members who may have been impacted by the cyber attack against Anthem, should be aware of scam email campaigns targeting current and former Anthem members. These scams, designed to capture personal information (known as “phishing”) are designed to appear as if they are from Anthem and the emails include a “click here” link for credit monitoring. These emails are NOT from Anthem.

  • DO NOT click on any links in email.
  • DO NOT reply to the email or reach out to the senders in any way.
  • DO NOT supply any information on the website that may open, If you have clicked on a link in email.
  • DO NOT open any attachments that arrive with email.
I received a call from Anthem related to this cyber attack asking for my information, what should I do?

Anthem is not calling members regarding the cyber attack and is not asking for credit card information or social security numbers over the phone. All impacted members will receive notice via mail which will advise them of the protections being offered to them as well as any next steps.

Does this impact Blue Cross and Blue Shield Federal Employee Program plans?

Yes, based upon the investigation thus far, it appears that Blue Cross and Blue Shield Federal Employee Program plans members are impacted. The Blue Cross and Blue Shield Service Benefit Plan is part of the Federal Employees Health Benefits Program (FEHBP.)

If I choose to purchase credit monitoring and repair services effective immediately, will Anthem reimburse me?

No. Anthem is contracting with a trusted vendor to provide free identity repair services, which will be retroactive to the date of the potential exposure, and credit monitoring to all those impacted, and will not reimburse for services that you may have independently purchased.


Subscribe to our newsletter

Sign-up to get the latest news.

Subscribe

Connect with us

Follow and interact with Aim.

Get started with Aim today

Call 1-800-321-9038