Anthem Cyber Attack Update - Bim Group

Anthem Cyber Attack Update

News

Share this post:

Linkedin

From Anthem to Brokers:

Last week, we made you aware that Anthem was the target of a very sophisticated external, cyber attack. Since that time, we have been working around the clock continuing our assistance in the FBI investigation; analyzing the data to understand the impact to our members; responding to questions from our clients, members and partners; and securing a best-in-class vendor to provide identity protection services to our members as quickly as possible.

To that end, we understand that you and your clients are eager to receive more information about how to enroll in the credit protections we are providing. Starting this Friday, Feb. 13, current and former Anthem members whose information was included in the database that was compromised, can visit AnthemFacts.com to learn how to enroll in two years of free credit monitoring and identity theft repair services provided by our vendor – a leading and trusted identity protection provider. Members can access these services starting Friday, Feb. 13, prior to receiving a mailed notification from Anthem, which will be sent in the coming weeks.

The free identity protection services provided by Anthem include two years of:

  • Identity Repair Assistance:  Should a member experience fraud, an investigator will do the work to recover financial losses, restore the member’s credit, and ensure the member’s identity is returned to its proper condition. This assistance will cover any fraud that has occurred since the incident first began.
  • Credit Monitoring: At no cost, members may also enroll in additional protections, including credit monitoring. Credit monitoring alerts consumers when banks and creditors use their identity to open new credit accounts.
  • Child Identity Protection:  Child-specific identity protection services will also be offered to any members with children insured through their Anthem plan.
  • Identity theft insurance:  For individuals who enroll, the company has arranged for $1,000,000 in identity theft insurance, where allowed by law.
  • Identity theft monitoring/fraud detection: For members who enroll, data such as credit card numbers, social security numbers and emails will be scanned against aggregated data sources maintained by top security researchers that contain stolen and compromised individual data, in order to look for any indication that the members’ data has been compromised.
  • Phone Alerts:  Individuals who register for this service and provide their contact information will receive an alert when there is a notification from a credit bureau, or when it appears from identity theft monitoring activities that the individual’s identity may be compromised.

Industry standards under similar circumstances are to provide credit monitoring services for one year; however, we are exceeding these standards and providing  these identity protection and credit monitoring services to all impacted members for two years, in response to your concerns. This has been our priority from day one, to be transparent, protect your data and to give our members peace of mind.

We have been working to arrange for these credit monitoring and identity theft protection services since the attack on our systems was discovered. Doing so has required enormous efforts and commitment of resources to ensure that our vendor can accommodate what we anticipate will be very high demand for these services. It was essential that we work with the vendor to develop the infrastructure to handle a high volume of calls and web traffic, and to train representatives to accurately answer questions from our members. Our goal is to provide peace of mind, while minimizing frustration for our members. We are able to provide these services 11 business days after discovery of the attack.

We will distribute press releases in our markets on Friday announcing the identity protection services are available. We will also send letters in the mail to our members in the coming weeks with information on how to sign up for services. We will share a copy of these communications with you before they are distributed.

We will continue to provide updates as we learn more about the attack, and we are here to answer your questions to the best of our ability.

Your local representative is also prepared to discuss this with you.

Sincerely,

Ken Goulet
President, Commercial and Specialty Business

Deb Moessner
Kentucky Plan President

This article applies to:

  • Kentucky
  • Small Group, Large Group, and Individual (under 65)

Recent Insights

April 22, 2024
News

Do You Know Where Your Employees Are? Managing Taxes for a Growing Remote Workforce

READ TIME: 5 MINUTES Remote work remains a growing focus of employers with employees increasingly seeking jobs that permit remote or hybrid work arrangements. Though the flexibility and benefits of remote work for employees is highly desired, it comes with some additional considerations and potential tax complications for the employer. State Income Tax Withholding Considerations […]
Read more
April 22, 2024
COBRA, Compliance Alert

Group Health Plan Guide to COBRA

The Consolidated Omnibus Budget Reconciliation Act (COBRA) gives workers and their families who lose their health benefits due to job loss, reduction in hours, death, divorce, and other life events the right to choose to temporarily continue health benefits provided by their group health plan. This guide includes: Employers required to offer COBRA Plan types […]
Read more
April 8, 2024
HIPAA

Timely Responses Required for Requests under HIPAA’s Right of Access Rule

READ TIME: 4 MINUTES On December 15, 2023, the U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR), announced a settlement under the Health Insurance Portability & Accountability Act (HIPAA) Right of Access Rule. This penalty illustrates that the Right of Access Rule remains a focus of HHS and that health […]
Read more
April 8, 2024
Compliance Alert

March 2024 Compliance Recap

READ TIME: 7 MINUTES ACA reporting is in its first year of the required electronic reporting for employers filing ten or more returns annually. Employers and employees must make changes to HSAs by the April 15 deadline. Employers of all sizes continued to prepare for the June 1 RxDC Reporting using the newly released instructions. […]
Read more