CareFirst website hacked; 1.1 million users affected

CareFirst website hacked; 1.1 million users affected

As has been well publicized, CareFirst BlueCross/BlueShield was the victim of a cyberattack that affects 1.1 million users, the company says. Affected members, a number of whom are WANADA members and their employees, will be offered two years of credit monitoring and identity theft protection at no cost. CareFirst has not yet said who the 1.1 million are, but they include their insured and brokers.

The hackers gained access to the usersê names, birth dates, email addresses and subscriber identification numbers. Fortunately, social security numbers and medical claims, along with employment record, credit card and other financial data were kept separately and were not hacked, according to CareFirst and a report in the Washington Business Journal. Individualsê health information is worth a good deal on the black market, as it can be used to obtain prescription drugs or for identity theft, the Journal says.

The cyberattack occurred on June 19, 2014, but was not discovered until April 21, 2015.

WANADA members and insureds may direct questions to the WANADA offices at (202) 237-7200.

Download Bulletin PDF