INDIANAPOLIS (WISH) – Up to 80 million people may be impacted by what’s being called the largest data breach at a health care company.
Anthem announced Thursday its data systems were breached, accessing names, birthdays, social security numbers, street addresses, email addresses and employment information, including income data.
According to Anthem spokesman Tony Felts, cyber attackers executed a very sophisticated attack to gain access to one of Anthem’s IT systems. Hackers obtained personal information relating to past and present consumers and employees.
No credit card information was compromised. There is also no evidence that medical information was targeted or obtained.
“You could put a lot of controls in, and that includes technical controls and people controls,” Mark Clausman, owner of cybersecurity firm The Sterlyn Group, said. “If it’s a target, and they really want to get to it, the hackers know what they’re doing and can get around a lot of these things.”
According to Anthem, the FBI was immediately contacted, as was Mandiant, one of the world’s leading cyber security firms.
Anthem says they will individually notify current and former members whose information has been accessed. Free credit monitoring and identity protection services will also be provided.
The breach has renewed calls from consumer advocates to have customers keep a close eye on their personal information online.
“There’s so much information out there today that you get a little bit here, you get a little bit there and you can piece that together, and you can find out a lot about someone so there’s a lot of different ways you can use that information to scam you,” Tim Maniscalo, with the Better Business Bureau of Central Indiana, said.
A website has been set up where members can ask questions. Members can also call 877-263-7995.