Anthem To Pay Nearly $40M Settlement Over 2015 Cyberattack

FILE – In this May 14, 2019, file photo signage on the outside of the corporate headquarters building of health insurance company Anthem is shown in Indianapolis. Anthem has agreed to another multi-million dollar-settlement over a cyberattack on its technology that exposed the personal information of nearly 79 million people. The Blue Cross-Blue Shield insurer said Wednesday, Sept. 30, 2020 that it will pay $39.5 million to settle an investigation by a group of state attorneys general. (AP Photo/Michael Conroy, File)

Health insurer Anthem has agreed to another multimilliondollar settlement over a cyberattack on its technology that exposed the personal information of nearly 79 million people.

INDIANAPOLIS: Health insurer Anthem has agreed to another multimillion-dollar settlement over a cyberattack on its technology that exposed the personal information of nearly 79 million people.

The Blue Cross-Blue Shield insurer said Wednesday that it will pay $39.5 million to settle an investigation by a group of state attorneys general. Anthem said it was the last open investigation into the attack.

The company also agreed nearly two years ago with the U.S. Department of Health and Human Services to pay $16 million to settle possible privacy violations.

Indianapolis-based Anthem Inc. provides health insurance coverage to more than 42 million people in several states, including key markets like California and New York.

The company discovered the data breach in early 2015 after hackers had been burrowing into its systems for weeks. Security experts said at the time that the size and scope of the attack indicated potential involvement by a foreign government.

Hackers used a common email technique called spear-phishing in which unwitting company insiders are tricked into revealing usernames and passwords. The Anthem attackers gained the credentials of system administrators, allowing them to probe deeply into the insurers systems.

The attack exposed information that included names, birthdates, Social Security numbers and medical IDs.

Last year, a federal grand jury indicted two members of a hacking group operating from China in the attack.

Anthem said Wednesday that it was the victim of a sophisticated state sponsored criminal attack group in the attack. The insurer said it did not believe it violated the law in connection with its data security, and it was not admitting to that with its latest settlement.

The insurer also said that it has found no evidence that information obtained in the attack led to fraud.

Shares of Anthem climbed nearly 3% to $267.21 in morning trading, while broader indexes rose around 1%.

___

Follow Tom Murphy on Twitter: @thpmurphy

Disclaimer: This post has been auto-published from an agency feed without any modifications to the text and has not been reviewed by an editor

Speak Your Mind

LEAVE A REPLY

Please enter your comment!
Please enter your name here

Get in Touch

350FansLike
100FollowersFollow
281FollowersFollow
150FollowersFollow

Recommend for You

Oh hi there 👋
It’s nice to meet you.

Subscribe and receive our weekly newsletter packed with awesome articles that really matters to you!

We don’t spam! Read our privacy policy for more info.

You might also like

Want to update EPFO KYC details online? Here is...

New Delhi: The Ministry of Labour & Employment on last Saturday (August 22, 2020)...

India’s Rank Slips to 54th in Terms of Rise...

Image for representation. ...

Council Post: Being Better: Leading With Empathy And Compassion

By Michael Kurland, launched Branded Group in 2014, transforming the facility management industry with his vision...

Taking A Look Back At Rob Gronkowski’s Injury History

FOXBOROUGH, MA - JANUARY 21: Rob Gronkowski #87 of...