The biggest health insurance provider in the US, Anthem, has agreed to pay $115 million to resolve a class-action lawsuit resulting from the 2015 data breach.
Experts who looked into the matter concluded that the attack on Anthem, which revealed 78.8 million records, was most likely a slow, covert information theft that took place over several months rather than a typical smash-and-grab operation.
Using a bot infection to steal data from the corporation, the attack was carried out in order to evade detection by the IT and security staff.
Names, birth dates, residences, and medical ID numbers are included in the data; financial and health information was kept private.
Source: https://securityaffairs.com/60464/data-breach/anthem-115m-settlement.html
"id": "ANT2114251123",
"linkid": "anthembcbs",
"type": "Data Leak",
"date": "06/2017",
"severity": "85",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"