En Español2015 Cyber AttackHome

Anthem has reached a settlement to completely resolve the multidistrict class action litigation relating to the 2015 cyber attack against the company. The settlement, which is subject to approval by the court, does not include any finding of wrongdoing, and Anthem is not admitting any wrongdoing or that any individuals were harmed as a result of the cyber attack. Nevertheless, we are pleased to be putting this litigation behind us, and to be providing additional substantial benefits to individuals whose data was or may have been involved in the cyber attack and who will now be members of the settlement class.

When Anthem discovered the cyber attack in 2015, the company offered two years of credit monitoring and identity protection services to all individuals whose data may have been impacted. As part of this final resolution of the litigation, class members can receive an additional two years of credit monitoring and identity protection services, along with other significant benefits.

Anthem has agreed to pay a total of $115 million to resolve the litigation. Those funds will pay for the additional two years of credit monitoring and identity protection services, and will also benefit class members in several other ways.  In particular, while there is no evidence that any data impacted by the cyber attack has ever been sold or used to commit fraud, Anthem has agreed that $15 million of the fund will be allocated to pay actual out-of-pocket costs, up to a set amount, that  class members claim they incurred due to the cyber attack. Class members who already have credit services can submit a claim to receive alternative cash compensation instead of receiving the credit services provided by the settlement. The costs of sending notice to class members, administering claims, and the class members’ attorneys’ fees are also included in this total amount. The benefits described above, however, will not be available until the settlement has been finally approved by the Court and any appeals have been concluded.

Anthem has had, for many years, a strong information security program to protect the personal data entrusted to us. As we have seen in cyber attacks against governments and private sector companies including Anthem over the past few years, many cyber threat actors are increasingly sophisticated and determined adversaries. Anthem is determined to do its part to prevent future attacks. To that end, as part of the settlement, Anthem has agreed to continue the significant information security practice changes that we undertook in the wake of the cyber attack, and we have agreed to implement additional protections over the next three years.

A third-party settlement administrator will manage the settlement, which will be overseen by the court in this litigation. The settlement administrator will be the best resource for questions pertaining to the settlement agreement, including how to register for the credit monitoring or identity protection services offered or how to submit claims for out-of-pocket costs or alternative compensation. If the Court preliminarily approves the settlement, the settlement administrator will set up a website regarding this settlement, and we will update this page with a link to that website and a phone number for the settlement administrator as soon as those are available.

Unrelated to Settlement Agreement, the following information and services were provided at the time of the 2015 Cyber Attack

How to Access & Sign Up For Identity Theft Repair & Credit Monitoring Services

Anthem is working with AllClear ID, a leading and trusted identity protection provider, to offer 24 months of identity theft repair and credit monitoring services to impacted individuals.

This includes customers of Anthem, Inc. companies Amerigroup, Anthem and Empire Blue Cross Blue Shield companies, Caremore, HealthLink, and UniCare, and some employees of self-insured employer groups where Anthem received information about non-Anthem members to provide analytics and administrative services. Additionally customers of Blue Cross and Blue Shield companies who used their Blue Cross and Blue Shield insurance in one of fourteen states where Anthem, Inc. operates may be impacted and are also eligible: California, Colorado, Connecticut, Georgia, Indiana, Kentucky, Maine, Missouri, Nevada, New Hampshire, New York, Ohio, Virginia, and Wisconsin.

AllClear ID is ready and standing by to assist you if you need identity repair assistance. This service is automatically available to you with no enrollment required. If a problem arises, simply call and a dedicated investigator will do the work to recover financial losses, restore your credit, and make sure your identity is returned to its proper condition.

For additional protection, and at no cost, you may also enroll in the AllClear PRO service at any time during the 24 month coverage period. This service includes credit monitoring and an identity theft insurance policy. Please enroll at https://anthem.allclearid.com/. Those without Internet access can call 877-263-7995.

To access identity repair services, please call 877-263-7995

For additional information regarding your protections, please visit: https://anthem.allclearid.com/faqs.


Medicaid Members Click Here | For Massachusetts Medicaid Members

May 8, 2015 Click here for printer friendly version

To Individuals:

On January 29, 2015, Anthem, Inc. (Anthem) learned of a cyberattack to our IT system. The cyberattackers tried to get private information about individuals with data on Anthem systems. We believe it happened over the course of several weeks beginning in early December 2014.

As soon as we discovered the attack, we immediately began working to close the security vulnerability and contacted the FBI. We have been fully cooperating with the FBI’s investigation. Anthem has also retained Mandiant, one of the world’s leading cybersecurity firms, to assist us in our investigation and to strengthen the security of our systems.

Individuals Impacted

Current or former members of one of Anthem's affiliated health plans may be impacted. In addition, some members of other independent Blue Cross and Blue Shield plans who received healthcare services in any of the areas that Anthem serves may be impacted. In some instances, non-Anthem members and non-Blue Plan members may have been impacted if their employer offered Anthem and non-Anthem health plan options. Anthem is providing identity protection services to all individuals that are impacted. For a listing of potentially impacted Anthem affiliated health plans and other Blue Cross and Blue Shield companies for which Anthem is providing this service, visit AnthemFacts.com to view a list. Anthem is also a service provider to other group health plans and Blue Cross and Blue Shield plans across the country.

Information Accessed

The information accessed may have included names, dates of birth, Social Security numbers, health care ID numbers, home addresses, email addresses, and employment information, including income data. We have no reason to believe credit card or banking information was compromised, nor is there evidence at this time that medical information such as claims, test results, or diagnostic codes, was targeted or obtained.

Identity Protection Services

Anthem has arranged to have AllClear ID protect your identity for two (2) years at no cost to you. The following identity protection services start on the date of this notice, or the date you previously enrolled in services based on information posted on AnthemFacts.com. You can use them at any time during the next two (2) years after your service begins.

  • AllClear SECURE: The team at AllClear ID is ready and standing by if you need identity repair assistance. This service is automatically available to you with no enrollment required. If a problem arises, simply call 1-877-263-7995 and a dedicated investigator will do the work to recover financial losses, restore your credit and make sure your identity is returned to its proper condition. AllClear ID maintains an A+ rating at the Better Business Bureau.
  • AllClear PRO: This service offers additional layers of protection including credit monitoring and a $1 million identity theft insurance policy. For a child under 18 years old, AllClear ID ChildScan identifies acts of fraud against children by searching thousands of databases for use of your child’s information. To use the PRO service, you will need to provide your personal information to AllClear ID. To learn more about these services, or to enroll, visit, our source of truth http://www.AnthemFacts.com and click on the AllClear ID link from there. Please note: Additional steps may be required by you in order to activate your phone alerts.

Mailed Notification

Anthem will notify potentially impacted individuals for whom we have valid addresses by U.S. Postal mail with this same specific information about the identify protection services that are available and on how to enroll in free credit monitoring. These services will be provided to potentially impacted individuals free of charge. Anthem has also established a dedicated website (AnthemFacts.com) where individuals can access additional information, including frequently asked questions and answers.

Toll-Free Hotline

Anthem has established a dedicated toll-free number that you can call if you have questions related to this incident. That number is 877-263-7995. We have included contact information for the three nationwide credit bureaus below.

Fraud Prevention Tips

We want to make you aware of steps you may take to guard against identity theft or fraud.

We recommend that potentially impacted individuals remain vigilant for incidents of fraud and identity theft, including by reviewing account statements and monitoring free credit reports. In addition, you can report suspected incidents of identity theft to local law enforcement, Federal Trade Commission, or your state attorney general. To learn more, you can go to the FTC’s Web site, at www.consumer.gov/idtheft, or call the FTC, at (877) IDTHEFT (438-4338) or write to Federal Trade Commission, Consumer Response Center, 600 Pennsylvania Avenue, NW, Washington, DC 20580.

You should be aware of scam email campaigns targeting individuals. These scams, designed to capture personal information (known as “phishing”), are designed to appear as if they are from Anthem and the emails include a “click here” link for credit monitoring. These emails are NOT from Anthem.

  • DO NOT reply to the email or reach out to the senders in any way.
  • DO NOT supply any information on the website that may open, if you have clicked on a link in email.
  • DO NOT open any attachments that arrive with email.

Anthem is not calling individuals regarding the cyber attack and is not asking for credit card information or Social Security numbers over the phone. For more guidance on recognizing scam email, please visit the FTC Website: http://www.consumer.ftc.gov/articles/0003-phishing.

Credit Bureau Information
Equifax
PO BOX 740241
ATLANTA GA 30374-0241
1-800-685-1111
equifax.com
Experian
PO BOX 9532
ALLEN TX 75013
1-888-397-3742
experian.com
TransUnion
PO BOX 2000
CHESTER, PA 19022
1-800-916-8800
transunion.com

Fraud Alert and Credit Freeze Information

You can obtain additional information from the FTC and the nationwide credit bureaus about fraud alerts and security freezes. You can add a fraud alert to your credit report file to help protect your credit information. A fraud alert can make it more difficult for someone to get credit in your name because it tells creditors to follow certain procedures to protect you, but it also may delay your ability to obtain credit. You may place a fraud alert in your file by calling just one of the three nationwide credit bureaus listed above. As soon as that bureau processes your fraud alert, it will notify the other two bureaus, which then must also place fraud alerts in your file. In addition, you can visit the credit bureau links below to determine if and how you may place a security freeze on your credit report to prohibit a credit bureau from releasing information from your credit report without your prior written authorization:

For Maryland and North Carolina Residents - You can obtain information from these sources about preventing identify theft:

  • Visit the Federal Trade Commission website at:
    www.ftc.gov, or call 1-877-ID-THEFT
    or write to this address:
    Federal Trade Commission
    600 Pennsylvania Avenue NW
    Washington, DC 20580
  • Maryland: Visit the Maryland Office of the Attorney General at:
    oag.state.md.us/idtheft/index.htm, or call 1-410-528-8662
    or write to this address:
    Consumer Protection Division
    Maryland Office of the Attorney General
    200 St. Paul Place
    Baltimore, MD 21202
  • North Carolina: Visit the North Carolina Office of the Attorney General at: http://www.ncdoj.gov/Crime.aspx or call 1-919-716-6400
    or write to this address:
    Attorney General’s Office
    9001 Mail Service Center
    Raleigh, NC 27699-9001

FOR MASSACHUSSETTS RESIDENTS

Under Massachusetts law, you have the right to obtain a police report in regard to this incident. If you are the victim of identity theft, you also have the right to file a police report and obtain a copy of it.

Massachusetts law also allows consumers to place a security freeze on their credit reports. A security freeze prohibits a credit reporting agency from releasing any information from a consumer's credit report without written authorization. However, please be aware that placing a security freeze on your credit report may delay, interfere with, or prevent the timely approval of any requests you make for new loans, mortgages, employment, housing or other services.

If you have been a victim of identity theft and you provide the credit reporting agency with a valid police report, it cannot charge you to place, lift or remove a security freeze. In all other cases, a credit reporting agency may charge you up to $5.00 each to place, temporarily lift, or permanently remove a security freeze. To place a security freeze on your credit report, you must send a written request to each of the three major consumer reporting agencies listed above.

In order to request a security freeze, you will need to provide the following information:

  1. Your full name (including middle initial as well as Jr., Sr., II, III, etc.);
  2. Social Security number;
  3. Date of birth;
  4. If you have moved in the past five (5) years, the addresses where you have lived over the prior five years;
  5. Proof of current address (e.g., a current utility bill or telephone bill);
  6. A legible photocopy of a government issued identification card (e.g., state driver's license or ID card or military identification);
  7. If you are a victim of identity theft, a copy of either the police report, investigative report, or complaint to a law enforcement agency concerning identity theft;
  8. If you are not a victim of identity theft, payment by check, money order, or credit card (Visa, MasterCard, American Express or Discover only). Do not send cash through the mail.

The credit reporting agencies have three (3) business days after receiving your request to place a security freeze on your credit report. The credit reporting agencies must also send written confirmation to you within five (5) business days and provide you with a unique personal identification number (PIN) or password, or both that can be used by you to authorize the removal or lifting of the security freeze.

To lift the security freeze in order to allow a specific entity or individual access to your credit report, you must call or send a written request to the credit reporting agencies by mail and include proper identification (name, address, and Social Security number) and the PIN number or password provided to you when you placed the security freeze, as well as the identities of those entities or individuals you would like to receive your credit report or the specific period of time you want the credit report available. The credit reporting agencies have three (3) business days after receiving your request to lift the security freeze for those identified entities or for the specified period of time. To remove the security freeze, you must send a written request to each of the three credit reporting agencies by mail and include proper identification (name, address, and Social Security number) and the PIN number or password provided to you when you placed the security freeze. The credit reporting agencies have three (3) business days after receiving your request to remove the security freeze.

Letter from CEOFAQ
Was my information accessed? What information has been compromised? How can I find out if my information was compromised? Who is responsible for this cyber attack or breach? When will I receive my letter in the mail? How can I sign up for credit monitoring/identity protection services? Do the people who accessed my information know about my medical history? Do the people who accessed my information have my credit card numbers? Did this impact all lines of Anthem Business? Is my Anthem plan/brand impacted? How can I be sure my personal and health information is safe with Anthem, Inc.? Does this impact Blue Cross and Blue Shield plans not owned by Anthem? I think I received a scam email related to Anthem's cyber attack? I received a call from Anthem related to this cyber attack asking for my information, what should I do? Does this impact Blue Cross and Blue Shield Federal Employee Program plans? If I choose to purchase credit monitoring and repair services effective immediately, will Anthem reimburse me? Does the acceptance of Anthem’s offer of 2 years of AllClear ID’s identity theft repair or credit monitoring services cause individuals to waive any legal rights? Since there is integration between Anthem and HealthEquity, does the breach also compromise employees’ Health Equity account? What if I am living internationally and need to contact AllClear for identity repair services? Are non-Anthem, non-Blue Plan members potentially impacted by the cyber attack? Has the FBI released any details as a result of their investigation?

February 13, 2015 Click here for printer friendly version

Dear Current or Former Member:

On January 29, 2015, Anthem, Inc. (Anthem) learned of a cyberattack to our IT system. The cyberattackers tried to get private information about current and former Anthem members. We believe it happened over the course of several weeks beginning in early December 2014.

As soon as we learned about the attack, we:

  • Began working to close the security issues
  • Contacted the FBI to begin an investigation
  • Hired Mandiant, a leading cybersecurity firm, to help with the investigation

We want to provide identity protection services to impacted members.

Who is impacted?

Current or former members of one of Anthem’s affiliated health plans may be impacted. These plans include but are not limited to Amerigroup, UniCare, CareMore and HealthPlus Amerigroup. You can visit anthemfacts.com to view a list of Anthem plans that may be impacted. Anthem is a service provider to other group health plans and Blue Cross and Blue Shield plans across the country.

What did the cyberattackers access?

Accessed information may have included:

  • Names
  • Dates of birth
  • Social Security numbers
  • Health care ID numbers
  • Home addresses
  • Email addresses
  • Work information like income data

We don’t believe these kinds of information were targeted or accessed:

  • Credit card or banking information
  • Medical information like claims, test results or diagnostic codes

Identity Protection Services

We’ve arranged to have AllClear ID protect your identity for two years at no cost to you. These identity protection services start on the date of this notice. You can use them at any time during the next two years.

  • AllClear Secure: The team at AllClear ID is ready and standing by if you need identity repair help. We’re giving you this service at no cost. You don’t need to enroll. If a problem comes up, just call 1-877-263-7995. An investigator will do the work to:
    • Recover financial losses
    • Restore your credit
    • Make sure your identity is returned to how it should be
  • AllClear ID maintains an A+ rating at the Better Business Bureau.
  • AllClear PRO: This service offers extra layers of protection, including:
    • Credit monitoring
    • A $1 million identity theft insurance policy
    • For a child under 18 years old, AllClear ID ChildScan finds acts of fraud against children by searching data files for use of your child’s information.
    • To use the PRO service, you’ll need to provide your personal information to AllClear ID. To learn more about these services or to enroll:
  • Visit anthemfacts.com
  • Click on the AllClear ID link from there

Please note: You may need to take extra steps to start your phone alerts.

Mailed Notification

Anthem will also tell likely impacted current and former members by U.S. Postal Service how to enroll in free credit monitoring and identity protection services. These services will be given free of charge. Anthem has also set up a website (www.anthemfacts.com) where members can learn more.

Toll-Free Hotline

Anthem has set up a toll-free number for current and former members to call if they have questions about this incident. That number is 1-877-263-7995 or TTY/TDD 1-800-855-2880. Contact information for the three nationwide credit bureaus is given on the next page.

Fraud Prevention Tips

There are steps you may take to guard yourself against identity theft or fraud.

We urge likely impacted members to stay alert for incidents of fraud and identity theft. This includes reviewing your account statements and checking free credit reports. Also, you can report suspected incidents of identity theft to local law enforcement, the Federal Trade Commission (FTC) or your state attorney general. To learn more, you can:

  • Go to the FTC website at www.consumer.gov/idtheft
  • Call the FTC at 1-877-IDTHEFT (1-877-438-4338) or
  • Write to:
    Federal Trade Commission
    Consumer Response Center
    600 Pennsylvania Avenue NW
    Washington, DC 20580

You should be aware of scam email campaigns that target current and former Anthem members. These scams are called “phishing.” They’re meant to look like they’re from Anthem. These emails include a “click here” link for credit monitoring. These emails are NOT from Anthem.

  • DO NOT reply to the email or reach out to the senders in any way.
  • DO NOT enter any information on the website that may open, if you have clicked on a link in email.
  • DO NOT open any attachments that arrive with email.

Anthem is not calling members about the cyberattack. Also, Anthem is not asking for credit card information or Social Security numbers over the phone. For more help on spotting scam email, please visit the FTC website at www.consumer.ftc.gov/articles/0003-phishing.

Credit Bureau Information
Equifax
PO BOX 740241
ATLANTA GA 30374-0241
1-800-685-1111
equifax.com
Experian
PO BOX 9532
ALLEN TX 75013
1-888-397-3742
experian.com
TransUnion
PO BOX 2000
CHESTER, PA 19022
1-800-916-8800
transunion.com

Fraud Alert and Credit Freeze Information

You can get more information from the FTC and the credit bureaus about fraud alerts and security freezes. You can add a fraud alert to your credit report file to help protect your credit information. A fraud alert can make it harder for someone to get credit in your name. This is because it tells creditors to follow certain steps to protect you, but it also may slow your ability to get credit.

You may place a fraud alert in your file by calling one of the credit bureaus listed above. When that bureau helps to process your fraud alert, it will tell the other two bureaus. They will then also place fraud alerts in your file.

Also, you can visit the credit bureau links below to find out if and how you may place a security freeze on your credit report. This can stop a credit bureau from sharing information from your credit report without your prior written consent:

For Maryland and North Carolina residents — you can get information from these sources about helping to prevent identify theft:

Federal Trade Commission

  • Visit the FTC website at www.ftc.gov
  • Call 1-877-ID-THEFT or
  • Write to:
    Federal Trade Commission
    600 Pennsylvania Avenue NW
    Washington, DC 20580

Maryland

North Carolina

  • Visit the North Carolina Office of the Attorney General website at www.ncdoj.gov/Crime.aspx
  • Call 1-919-716-6400 or
  • Write to:
  • Attorney General’s Office
    9001 Mail Service Center
    Raleigh, NC 27699-9001




Cyberattack – A crime that tries to damage, upset or take data from a computer, group or network when approval has not been given

Cyberattackers – People who try to damage, upset or take data from one computer, a computer group or network when approval has not been given

Cybersecurity – Steps taken to protect data from being damaged, upset or stolen from a computer, system or network









Information technology (IT) system – A computer group or network that handles data electronically

Investigation – To research what happened and who was part of a problem







Identity protection services – A company that helps keep personal data private and safe

Identity – Anything that makes someone different from everyone else

Credit monitoring – A service or company that watches your credit card accounts for strange events or charge

Personal and private information – Any data about a living person, for example: name, birthdate, Social Security number or address











Credit bureau – A company which saves data about the way someone uses credit, and assigns a credit score



Fraud – The crime of using dishonest steps to take something from someone else to cause harm

Identity theft – When personal data has been taken by someone who wants to harm

Credit report – A report with information on a person’s credit history including credit accounts, loans and late payments
















Fraud alert – An alert put on a credit card account when an event or charge does not show how the account owner most often acts





Security freeze – A notice put in a person’s credit report. It helps protect them from being a victim of identity theft.


From the Desk of Joseph R. Swedish President and CEO Anthem, Inc. To Our Members

Safeguarding your personal, financial and medical information is one of our top priorities, and because of that, we have state-of-the-art information security systems to protect your data. However, despite our efforts, Anthem was the target of a very sophisticated external cyber attack. These attackers gained unauthorized access to Anthem’s IT system and have obtained personal information from our current and former members such as their names, birthdays, medical IDs/social security numbers, street addresses, email addresses and employment information, including income data. Based on what we know now, there is no evidence that credit card or medical information, such as claims, test results or diagnostic codes were targeted or compromised.

Once the attack was discovered, Anthem immediately made every effort to close the security vulnerability, contacted the FBI and began fully cooperating with their investigation. Anthem has also retained Mandiant, one of the world’s leading cybersecurity firms, to evaluate our systems and identify solutions based on the evolving landscape.

Anthem’s own associates’ personal information – including my own – was accessed during this security breach. We join you in your concern and frustration, and I assure you that we are working around the clock to do everything we can to further secure your data.

Anthem will individually notify current and former members whose information has been accessed. We will provide credit monitoring and identity protection services free of charge so that those who have been affected can have peace of mind. We have created a dedicated website - www.AnthemFacts.com - where members can access information such as frequent questions and answers. We have also established a dedicated toll-free number that both current and former members can call if they have questions related to this incident. That number is: 1-877-263-7995. As we learn more, we will continually update this website and share that information with you.

I want to personally apologize to each of you for what has happened, as I know you expect us to protect your information. We will continue to do everything in our power to make our systems and security processes better and more secure, and hope that we can earn back your trust and confidence in Anthem.

Sincerely,

Joseph R. Swedish
President and CEO
Anthem, Inc.


Frequently Asked Questions

Was my information accessed?

Anthem is currently conducting an extensive IT Forensic Investigation to determine what individuals are impacted. We are working to determine how many people have been impacted and will notify all potentially impacted individuals for whom we have a valid mailing address through a written communication sent through the mail.

What information has been compromised?

Initial investigation indicates that the data accessed included names, dates of birth, member ID/ social security numbers, addresses, phone numbers, email addresses and employment information.

How can I find out if my information was compromised?

Those potentially impacted by the cyber-attack can confirm what type of personal information (i.e. their social security number, email address, etc.) was accessed by calling AllClear at 877-263-7995. You will be transferred to a phone representative who will ask for your name, date of birth and possibly additional personal information to ensure that we protect your personal health information (PHI.)

Who is responsible for this cyber attack or breach?

Anthem is working closely with federal law enforcement investigators. At this time, no one person or entity has been identified as the attacker.

When will I receive my letter in the mail?

Many letters have already been sent, but we continue working to identify the individuals who are impacted.

How can I sign up for credit monitoring/identity protection services?

Impacted individuals will receive notice via mail which will advise them of the protections being offered. Impacted individuals may also sign up via AnthemFacts.com.

Do the people who accessed my information know about my medical history?

No - our investigation to date indicates there was no diagnosis or treatment data exposed.

Do the people who accessed my information have my credit card numbers?

No, our current investigation shows the information accessed did not include credit card numbers or banking info.

Did this impact all lines of Anthem Business?

At this point in the investigation, it appears that all product lines are impacted except for those current or former Anthem members who only had coverage for workers compensation, life or disability insurance only.

Is my Anthem plan/brand impacted?

The impacted Anthem plans/brands include Anthem Blue Cross, Anthem Blue Cross and Blue Shield, Blue Cross and Blue Shield of Georgia, Empire Blue Cross and Blue Shield, Amerigroup, Caremore, Unicare, HealthKeepers, HealthLink and Golden West.

How can I be sure my personal and health information is safe with Anthem, Inc.?

Anthem is doing everything it can to ensure there is no further vulnerability to its database warehouses. Anthem has contracted with a global company specializing in the investigation and resolution of cyber attacks. We will work with this company to reduce the risk of any further vulnerabilities and work to strengthen security.

Does this impact Blue Cross and Blue Shield plans not owned by Anthem?

Yes, BlueCard members are impacted. The Blue Cross and Blue Shield Association's BlueCard is a national program that enables members of one Blue Cross and Blue Shield Plan to obtain healthcare services while traveling or living in another Blue Cross and Blue Shield Plan's service area. The program links participating healthcare providers with the independent Blue Cross and Blue Shield Plans across the country and in more than 200 countries and territories worldwide through a single electronic network for claims processing and reimbursement.

The independent Blue Cross and Blue Shield plans affected include some members of Arkansas BCBS, BCBS of Alabama, BCBS of Arizona, BCBS of Hawaii, BCBS of Kansas, BCBS of Kansas City, BCBS of Louisiana, BCBS of Massachusetts, BCBS of Michigan, BCBS of Minnesota, BCBS of Mississippi, BCBS of Nebraska, BCBS of North Carolina, BCBS of North Dakota, BCBS of Rhode Island, BCBS of South Carolina, BCBS of Tennessee, BCBS of Vermont, BCBS of Wyoming, Blue Cross of Idaho, Blue Shield of California, Capital Blue Cross, CareFirst BCBS, BCBS of Florida, GeoBlue, HealthNow New York, Highmark BCBS, Horizon BCBS, Hospital Service Association of Northeastern PA, Independence Blue Cross, La Cruz Azul, Lifetime Healthcare, Inc., Premera BCBS, Wellmark BCBS, BlueCross BlueShield of Illinois, BlueCross BlueShield of Texas, BlueCross BlueShield of Oklahoma, BlueCross BlueShield of New Mexico, BlueCross BlueShield of Montana, Regence BlueCross BlueShield (in Oregon & Utah) and Regence BlueShield (in Idaho and portions of Washington state).

I think I received a scam email related to Anthem's cyber attack?

Individuals who may have been impacted by the cyber attack against Anthem, should be aware of scam email campaigns targeting current and former Anthem members. These scams, designed to capture personal information (known as "phishing") are designed to appear as if they are from Anthem and the emails include a "click here" link for credit monitoring. These emails are NOT from Anthem.

  • DO NOT click on any links in email.
  • DO NOT reply to the email or reach out to the senders in any way.
  • DO NOT supply any information on the website that may open, If you have clicked on a link in email.
  • DO NOT open any attachments that arrive with email.

Individuals who have provided e-mails to Anthem and have opted in to receiving communications may receive an e-mail directing them to visit AnthemFacts.com to sign up for services. This e-mail is scheduled to be distributed the week of Feb. 16. This email, sent due to state notification requirements, will not ask for personal information and will not contain a link to any websites other than AnthemFacts.com

I received a call from Anthem related to this cyber attack asking for my information, what should I do?

Anthem is not calling individuals regarding the cyber attack and is not asking for credit card information or social security numbers over the phone. All impacted individuals will receive notice via mail which will advise them of the protections being offered to them as well as any next steps.

If you believe you have been a victim of a scam or identity theft crime related to this incident, please file with the Internet Crime Complaint Center (IC3) at www.IC3.gov . Please be as descriptive as possible identifying your complaint as “Anthem” and try to include the following:

  • Details on how, when, and why you believe you were defrauded.
  • Identifiers of the perpetrators such as names, email addresses, websites, bank fraud information, and beneficiary names.
  • Actual or attempted loss amounts.
  • Header information from email messages.
  • Other relevant information to support your complaint.

Complainants are encouraged to save all original documentation, emails, faxes, and logs from communications in the event you are contacted by Law Enforcement.

Does this impact Blue Cross and Blue Shield Federal Employee Program plans?

Yes, based upon the investigation thus far, it appears that Blue Cross and Blue Shield Federal Employee Program plans members are impacted. The Blue Cross and Blue Shield Service Benefit Plan is part of the Federal Employees Health Benefits Program (FEHBP.)

If I choose to purchase credit monitoring and repair services effective immediately, will Anthem reimburse me?

No. Anthem is contracting with a trusted vendor to provide free identity repair services, which will be retroactive to the date of the potential exposure, and credit monitoring to all those impacted, and will not reimburse for services that you may have independently purchased.

Does the acceptance of Anthem’s offer of 2 years of AllClear ID’s identity theft repair or credit monitoring services cause individuals to waive any legal rights?

No.

Since there is integration between Anthem and HealthEquity, does the breach also compromise employees’ Health Equity account?

Anthem’s research to date indicates that no FSA (Flexible Spending Account) or HSA (Health Savings Account) data was compromised.

What if I am living internationally and need to contact AllClear for identity repair services?

Please contact the international non-toll free number at 512-201-2195.

Are non-Anthem, non-Blue Plan members potentially impacted by the cyber attack?

In some instances, Anthem determined that non-Anthem and non-Blue Plan group health plan members were potentially impacted by the cyber attack.  For some self-insured employer group health plans that offered Anthem and non-Anthem health plan options, Anthem may have - as a business associate vendor - received information about non-Anthem members to provide analytics and administrative services.  Anthem is providing notice to these potentially impacted non-Anthem members for whom it has a valid mailing address.

Has the FBI released any details as a result of their investigation?

As of 12/1/2015, this is an ongoing investigation and there are no additional details to provide.