Anthem Blue Cross, the vendor we use for our Relief PPO Medical Plan provider network, alerted the Los Angeles Firemen’s Relief Association it is investigating a breach of its information systems, which may have resulted in the unauthorized access of member information. Anthem reports the breach potentially involved 80 million current and former covered Anthem customers. Investigators do not know yet if the data for every individual was accessed. The FBI and an outside cyber vendor are working to determine the scope of the breach. Anthem officials report that no credit card information was accessed (for those who may be making direct payment to Anthem, such as people with individual policies, COBRA, etc.).
Anthem is not calling members regarding the cyber-attack and is not asking for credit card information or social security numbers over the phone. The company has issued a warning about spin-off scams aimed at tricking people into giving personal data. For more information click here.
Regarding the initial cyber-attack, Anthem has created a website www.anthemfacts.com, and a hotline, 1-877-263-7995, for members to call for more information. The Relief Association will provide updates as additional information is received. Here are the answers from Anthem to Frequently Asked Questions (FAQs):
- Was my information accessed?
Anthem is currently conducting an extensive IT Forensic Investigation to determine what members are impacted. We are working around the clock to determine how many people have been impacted and will notify all Anthem members who are impacted through a written communication. - What information has been compromised?
Initial investigation indicates that the member data accessed included names, dates of birth, member ID/ social security numbers, addresses, phone numbers, email addresses and employment information. - Who is responsible for this cyber-attack or breach?
Anthem is working closely with federal law enforcement investigators. At this time, no one person or entity has been identified as the attacker. - When will I receive my letter in the mail?
We continue working to identify the members who are impacted. We will begin to mail letters to impacted members in the coming weeks. - How can I sign up for credit monitoring/identity protection services?
All impacted members will receive notice via mail which will advise them of the protections being offered to them as well as any next steps. - Do the people who accessed my information know about my medical history?
No – our investigation to date indicates there was no diagnosis or treatment data exposed. - Do the people who accessed my information have my credit card numbers?
No, our current investigation shows the information accessed did not include credit card numbers. - Did this impact all lines of Anthem Business?
Yes, all product lines are impacted. - Is my (plan/brand) impacted?
The impacted (plan/brand) include Anthem Blue Cross, Anthem Blue Cross and Blue Shield, Blue Cross and Blue Shield of Georgia, Empire Blue Cross and Blue Shield, Amerigroup, Caremore, Unicare, Healthlink, and DeCare. - How can I be sure my personal and health information is safe with Anthem, Inc.?
Anthem is doing everything it can to ensure there is no further vulnerability to its database warehouses. Anthem has contracted with a global company specializing in the investigation and resolution of cyber-attacks. We will work with this company to reduce the risk of any further vulnerabilities and work to strengthen security.