US health insurance provider CareFirst has admitted to becoming the latest major US firm to be the victim of a hack, following similar attacks on firms such as Sony, Target, Home Depot and even other healthcare providers.
Around 1.1 million CareFirst customers have had their records compromised, making user names, email addresses and dates of birth available to the hackers.
CareFirst revealed that the incident came to light after the company undertook a thorough check of its systems in the wake of similar attacks on other healthcare providers including Anthem which came to light in February.
The firm discovered that it too had been a victim of a cyber attack that took place on 20 June 2014, and called on the services of Mandiant to help understand how it happened and to stop it happening again.
“This review included multiple comprehensive scans of CareFirst’s IT systems for any evidence of a cyber attack,” CareFirst said on a web page detailing the incident.
“Evidence suggests the attackers could have potentially acquired user names created by individuals to access CareFirst’s website, as well as members’ names, birth dates, email addresses and subscriber identification number.”
However, the company said that no Social Security numbers, medical claims information or financial information was put at risk, and that passwords to the site were unaffected as they are fully encrypted in its databases.
CareFirst CEO Chet Burrell wrote a note on the web page acknowledging that the hack took place and that the stolen data did not include all identifiable information, but that access to credit monitoring tools would be provided to those affected.
“Maintaining the privacy and security of our members’ personal information is one of our highest priorities,” he said.
“We are offering our potentially affected members two years of free credit monitoring and identity theft protection services in order to ease concerns about possible unauthorised use of your personal information.”
The incident is just the latest in a long line of hack attacks that have hit the headlines over the years.
Deal intended to help organisations chip away at their unstructured data
Nvidia takes aim at organisations looking to incorporate AI and VR
Cook told Apple staff in an email that "hate is a cancer"
Galaxy Note 8 will offer IP68 certification, a Samsung Exynos 8895 CPU, 6GB of RAM, 64GB of storage and IP68 certification