Cyber Attack Impacting Anthem

Posted: February 5, 2015

We have become aware that Anthem, Inc., the parent company of our health insurance provider, is the victim of a highly-sophisticated cyber attack. Anthem has informed us that its member data was accessed, and could include that of our employees.

We are working closely with Anthem to better understand the impact on its members. Here is what we know:

  • Once Anthem determined it was the victim of a sophisticated cyber attack, it immediately notified federal law enforcement officials and shared the indicators of compromise with the HITRUST C3 (Cyber Threat Intelligence and Incident Coordination Center).
  • Anthem’s Information Security has worked to eliminate any further vulnerability and continues to secure all of its data.
  • Anthem immediately began a forensic IT investigation to determine the number of impacted consumers and to identify the type of information accessed. The investigation is still taking place.
  • The information accessed includes member names, member health ID numbers/Social Security numbers, dates of birth, addresses, telephone numbers, email addresses and employment information, including income data. Social Security numbers were included in only a subset of the universe of consumers that were impacted.
  • Anthem is still working to determine which members’ Social Security numbers were accessed.
  • Anthem’s investigation to date shows that no credit card or confidential health information was accessed.
  • Anthem has advised us there is no indication at this time that any of our clients’ personal information has been misused.
  • All impacted Anthem members will be enrolled in identity repair services. In addition, impacted members will be provided information on how to enroll in free credit monitoring.

We are continuing to work closely with Anthem to better understand the cyber attack and any impact on our employees. Anthem has created a website and a hotline, 1-877-263-7995, for its members to call for more information. The website includes a Frequently Asked Questions (FAQs) that further explains the cyber attack.

Frequently Asked Questions

A list of frequently asked questions for employees has been assembled; you may view them in either English or Spanish.

False Anthem emails

We wanted to bring to your attention that there are some emails going out regarding the Cyber attack against Anthem that provides a link to subscribe to a free year of credit account protection. If you or your employees have received the following emails, please note these are NOT legitimate emails. Do not access the link in the email.

Anthem is putting out a press release and sharing it with the state attorney general, and we will update you as we become aware of any pertinent information from Anthem’s ongoing investigation.

Robert Bloomer
Director, Benefits Administration
Claremont University Consortium

« »