Jessica Davis reports: Maryland-based CareFirst has filed a final appeal to the U.S. Supreme Court to hear its data breach case, arguing that without a high court review, companies in every sector will be hit with a “flood” of data breach lawsuits in the future. The appeal stems from a decision by the U.S. Court…
Search Results for: carefirst
CareFirst Data Breach Case Moves to US Supreme Court
Elizabeth Snell reports: November 13, 2017 – A petition for writ of certiorari was recently filed with the US Supreme Court, pushing the CareFirst data breach case forward. CareFirst wants its case reviewed, which could potentially reignite the debate over how plaintiffs need to establish that injuries took place from a data breach. In August 2017,…
Proposed class action over CareFirst data breach dismissed
Brendan Pierson reports: A federal judge has dismissed a proposed class action over a 2015 cyberattack against health insurance company CareFirst BlueCross BlueShield that compromised the data of about 1.1 million people. U.S. District Judge Christopher Cooper in Washington, D.C. ruled Wednesday that the CareFirst policyholders who brought the lawsuit had not shown that they…
Seek and ye shall find: CareFirst notifies brokers and members of 2014 breach
Sometimes doing the right thing can be costly. In the wake of increasing attacks on health insurers (e.g., Anthem, Premera), CareFirst BlueCross BlueShield retained Mandiant to do an end-to-end assessment of their information security environment. The assessment included multiple scans to determine if there was any evidence of any attack. On April 21, 2015, Mandiant uncovered evidence…
CareFirst breach demonstrates how assumptions hurt healthcare
Steve Ragan reports: Last week, CareFirst BlueCross BlueShield (CareFirst) reported a data breach that was initially discovered last year. When the incident was first noticed, the company assumed they had taken care of the problem – only to learn that wasn’t the case ten months later. The healthcare sector has taken center stage in the recent months…
CareFirst BlueCross BlueShield discloses that hack in June 2014 affected 1.1 million members
From CareFirst BlueCross BlueShield: On May 20, 2015, CareFirst BlueCross BlueShield (CareFirst) announced that the company has been the target of a sophisticated cyberattack. The attackers gained limited, unauthorized access to a single CareFirst database. This was discovered as a part of the company’s ongoing Information Technology (IT) security efforts in the wake of…