"Blue Shield of California Discloses Data Breach, Number of Members Impacted Unclear"

It has recently been revealed that data on Blue Shield of California members may have been exposed due to a vulnerability in the MOVEit file transfer platform.  The insurer was notified on Sept. 1 by a vendor that indicated it was a victim of the data breach.  The vendor found on Aug. 23 that an unauthorized user had tapped into information in the MOVEit server and then took the server offline.  After an investigation, Blue Shield of California discovered that this third party extracted data from the server on May 28 and May 31.  The insurer did not disclose how many members may have been impacted by the breach, but the insurer said that accessed information may include names, birth dates, addresses, Social Security numbers, group ID numbers, patient ID numbers, and vision care diagnoses and treatment information.  Blue Shield members impacted by the MOVEit file transfer tool security breach are being provided with no-cost credit monitoring with identity restoration services.

 

Fierce Healthcare reports: "Blue Shield of California Discloses Data Breach, Number of Members Impacted Unclear"

Submitted by Adam Ekwall on