Most Popular Stories
- Want to cut healthcare costs? You may be on your own
- Ron Williams - 2009 Insurance CEO Compensation
- Medical-loss ratio could include fraud prevention
- Hospitals negotiate higher-than-competitive-rates with insurers
- AHIP donated $86M to lobby against health reform law
- SPOTLIGHT: Anthem pays hospitals $1.6M for stop-loss claims
Featured Jobs
- Nurse Practitioner or Physician Assistant needed in Houston, TX
CompHealth - Houston, TX - JO#1947 IT Manager - Transplant Dept. Operations
Intellect Resources - Northeast USA - EHR Director, IT Healthcare Provider (Practice Manager/Managing Director)
Staffing Technologies - Alpharetta, GA - Microbiologist
Integrated Resources - Los Angeles, CA - Nurse Practitioner w/Oncology Experience needed
comphealth - West Central, IL
Events
- Hospital/Physician Alignment Leadership Summit
Dec 9-10, 2010 — Vienna, VA - 7th Annual American Health Care Congress
December 7-8, 2010 - National Congress on Health Insurance Reform
January 19 - 21, 2011 — Ritz-Carlton Hotel, Washington, DC or Watch Online - Personalized Medicine in P4 Healthcare 2010
Dec 9-10, 2010 — Santa Clara, CA
Paid Research Reports
-
Electronic health records: getting it right first time
-
Cloud Computing Adoption In The APAC Life Sciences Industry
-
Stakeholder Opinions: Ophthalmology - Leading brands under threat
-
Genomics, Proteomics and Metabolomics in Diagnostics: Market landscape, innovative technologies and future outlook
-
Healthcare Regulatory Update: The United Arab Emirates
-
Point of Care Testing: Evaluating the return to evidence based medicine, novel technologies and the competitive landscape
We never sell or give away your contact information. Our reader's trust comes first.
Free Newsletter
FierceHealthPayer provides the latest news about the fast-changing and heavily regulated area of healthcare reimbursement. Join thousands of healthcare plan executives who get FierceHealthPayer via weekly email. Sign up today!
Top Tags
Connecticut AG investigates WellPoint data breach, fines Health Net $250K
Health insurers have been under fire in recent months for a spate of data breaches, and now Connecticut Attorney General (AG) Richard Blumenthal is investigating Indianapolis-based WellPoint Inc. for potentially compromising the financial and health information of 470,000 people across the country (including 5,600 Connecticut residents), reports Bloomberg Businessweek. This latest breach marks WellPoint's third--and largest--in three-and-a-half years, reports the Indianapolis Star.
Blumenthal has written WellPoint to request specific information on what caused the breach, how affected people are being protected and how the company will prevent future breaches. "This information breach is only the latest in a disturbing series of cases where nonpublic personal information has been subjected to unauthorized access," Blumenthal said. "In this era of increasing reliance on technology, it is vitally important that companies entrusted with nonpublic personal information employ the highest levels of security." Among other concerns, Blumenthal wants WellPoint to offer compromised consumers two years of credit monitoring services and $25,000 of identity-theft protection. (The company has provided one-year's worth of protection services.)
The breach was related to the online individual health insurance application process in 10 states: Connecticut, California, Colorado, Indiana, Kentucky, Missouri, Nevada, New Hampshire, Ohio and Wisconsin. Last October, an upgrade to the application process made by an outside firm resulted in a glitch that allowed unauthorized access of people's confidential applications. WellPoint found out about the problem in March when a California woman filed suit. "Within 12 hours of discovering the issue, we corrected it," WellPoint spokeswoman Cindy Sanders told Bloomberg.
In addition, the applications of fewer than 1,000 people have definitely been accessed. WellPoint officials believe that the majority of the instances of unauthorized access were made by the attorneys for the woman who filed suit, reports the Atlanta Journal-Constitution.
Earlier in June, Gainesville, Fla.-based AvMed Health Plans revealed that personal information for 1.2 million members and former members was on two laptops stolen from its headquarters, reports the Miami Herald. And in a far more mundane breach, the personal information for about 4,900 people was temporarily put at risk because Hartford, Conn.-based Aetna Inc. failed to clean out an old file cabinet before disposing of it. The paper files have been returned to Aetna, but the company is offering free credit monitoring to the affected people.
UPDATE: Connecticut AG Blumenthal has settled the state's lawsuit against Health Net of the Northeast Inc. regarding a computer hard drive that went missing last year, compromising the personal data of 1.5 million people, including 446,000 Connecticut residents, reports the Hartford Courant. Health Net of the Northeast will pay $250,000 in fines, as well as implementing a corrective action plan that includes continuing to provide identity theft protection plus improving systems controls, management and oversight structures, and employee training and awareness. If it turns out the data on the missing drive was used for illegal purposes, Health Net would pay an additional $500,000 to the state. In addition to Health Net of the Northeast, the settlement involves Health Net of Connecticut Inc. and parent companies UnitedHealth Group Inc. and Oxford Health Plans.
To learn more:
- read this Bloomberg Businessweek article
- read these Hartford Courant articles: article 1 or article 2
- take a look at these Indianapolis Star reports: report 1 and report 2
- read this Atlanta Journal-Constitution report
- read this Miami Herald article
- read this Aetna press release
Related Articles:
Health Net data breach brings first HITECH state enforcement action
OCR sets rules for sharing HIPAA breach information
Data breaches: Another opportunity for bad publicity
Comments
This is a GREAT article despite the dismay of breaches. In David Scott’s words, everyone needs to be a mini-Security Officer today. I think Mr. Scott, the author, is right: Most individuals and organizations enjoy so-called “Security” largely as a matter of luck. For some free insight check out the blog, “The Business-Technology Weave” – you can Google to it, or search on the site IT Knowledge Exchange which hosts it. Anyone else here reading I.T. WARS? It too reflects much of what is said here. I had to read parts of this book as part of my employee orientation at a new job. The book talks about a whole new culture as being necessary – an eCulture – for a true understanding of security, being that most identity/data breaches are due to simple human errors. It has great chapters on security, risk, content management, project management, acceptable use, various plans and policies, and so on. Just Google IT WARS – check out a couple links down and read the interview with the author David Scott at Boston’s Business Forum. (Full title is I.T. WARS: Managing the Business-Technology Weave in the New Millennium). “In the realm of risk, unmanaged possibilities become probabilities.” Keep “security” front and center! Great stuff.
Post new comment
Check out more news by topic
Affordable Care | AHA | AHIMA | AMA | American Hospital Association | American Medical Association | American Recovery and Reinvestment Act | ARRA | Centers for Medicare and Medicaid Services | Cerner | Charity Care | Cigna | Computerized Physician Order Entry | CPOE | David Blumenthal | Department of Health and Human Services | Electronic Health Records | Electronic Medical Records | EMR Adoption | Epic Systems | e-Prescribing | GE Healthcare | HCA | Health 2.0 | Health Information Exchange | Health Insurance Portability and Accountability Act | Health Plans | Health Reform | Healthcare Costs | Healthcare Financial Management Association | Healthcare Reform | HFMA | HHS | HIMSS | HIPAA | Home Monitoring | Hospital Construction | Hospital Corporation of America | Hospital Finance | Hospital Layoffs | Hospital Strikes | Humana | Ingenix | Interoperability | Kaiser Permanente | Kathleen Sebelius | Mayo Clinic | McKesson | Meaningful Use | Medicaid | Medical Group Management Association | Medical Malpractice | Medicare | Medicare Fraud | Medicare Part D | Medicare Reimbursement | MGMA | mHealth Initiative | Moody's Investors Service | Office of the National Coordinator for Health Information Technology | Patient Collections | Patient Privacy | Patient Safety | Pay for Performance | Personal Health Records | Physician Compensation | RAC | Recovery Audit Contractor | Remote Monitoring | Remote Patient Monitoring | Siemens | Telehealth | Telemedicine | UnitedHealth Group | Wellpoint | Wireless Health |
Home | Subscribe | Advertise | Mobile Edition | RSS | Privacy | Site MapTHE FIERCEMARKETS NETWORKFierceFinance | FierceFinanceIT | FierceComplianceIT | FierceHealthcare | FierceHealthFinance | FierceHealthIT | Hospital Impact | FierceMobileHealthcare | FierceHealthPayer | FiercePracticeManagement | FierceEMR | FierceCIO | FierceCIO:TechWatch | FierceContentManagement | FierceMobileIT | FierceGovernmentIT | FierceBiotech | FierceBiotech Research | FiercePharma | FierceVaccines | FierceBiotechIT | FiercePharma Manufacturing | FierceMedicalDevices | FierceDrugDelivery | FierceIPTV | FierceOnlineVideo | FierceTelecom | FierceVoIP | FierceBroadbandWireless | FierceDeveloper | FierceMobileContent | FierceWireless | FierceWireless:Europe | FierceCable© 2010 FierceMarkets. All rights reserved. |