Number affected in both states not yet known, but company working ‘around the clock’ to find out
by Jim McLean, KHI News Service
It’s likely that the records of some Kansas Medicaid recipients and Missouri Blue Cross and Blue Shield policyholders were compromised by a cyberattack on the Anthem health insurance company.
The breach was discovered last week but news of it wasn’t made public until late Wednesday.
Cindy Wakefield, a spokesperson for Anthem, the nation’s second-largest health insurer, said the hackers accessed the records of a significant number of current and former policyholders and individuals covered by the company’s Medicare and Medicaid subsidiaries.
All told, the database contained approximately 80 million records, she said.
“We don’t believe that the entire population was impacted, but we think that it’s in the tens of millions,” Wakefield said. “We know that it is impacting all lines of our business in all of our states.”
Anthem is the parent company of Amerigroup, one of the three private managed care organizations selected by the state to privatize its Medicaid program known as KanCare. Amerigroup covers approximately 132,000 of the more than 411,000 low-income, disabled and elderly Kansans enrolled in KanCare, according to a recent report compiled by the Kansas Department of Health and Environment for a legislative oversight committee.
Wakefield said the company is “working around the clock” to determine the number of its Kansas beneficiaries who were affected by the cyberattack.
“The assumption is that some of our Kansas members have been impacted, but at this point we just do not know how many,” she said.
The same is true, Wakefield said, for Anthem’s policyholders in Missouri, where the company has about 25 percent of the private health insurance market. Most of the policyholders are concentrated in the St. Louis area.
When company and FBI investigators are able to determine which records were compromised, Anthem will notify affected individuals by letter. The letters will include information about how to enroll in credit monitoring services and will offer to cover the cost of credit repair services, Wakefield said.
“And that (the credit repair) will be retroactive to last week when we discovered the attack,” she said.
So far, Wakefield said, “There is no evidence that any fraudulent activity has occurred due to this attack.”
The records accessed by the hackers contained people’s names, addresses and Social Security numbers, but no credit card or sensitive medical information, Wakefield said.
The nonprofit KHI News Service is an editorially independent initiative of the Kansas Health Institute and a partner in the Heartland Health Monitor reporting collaboration. All stories and photos may be republished at no cost with proper attribution and a link back to KHI.org when a story is reposted online.
– See more at http://www.khi.org/news/article/kansas-missouri-records-among-those-compromised-in-anthem-cyberattack#sthash.fYpw2sgT.dpuf
Update: KDHE announced that Amerigroup’s parent company, Anthem, will provide credit monitoring services to anyone affected. Any KanCare members who have questions related to this incident can call Anthem at 1-877-263-7995 or go to the website at www.anthemfacts.com.
The Kansas Insurance Department also has announced it is assessing the data breach.