• Home
  • Breach
  • Anthem, Inc. (now Elevance Health, Inc.)
Breach cyber

Anthem, Inc. (now Elevance Health, Inc.)

Nov 19, 2025 2 min read
Anthem, Inc. (now Elevance Health, Inc.)

Anthem, Inc. (operating as Elevance Health) experienced a **significant data breach** disclosed on **November 19, 2025**, exposing highly sensitive personally identifiable information (PII) of individuals. The breach compromised **names, addresses, dates of birth, Social Security numbers, medical records, and driver’s license numbers**—data prime for identity theft, fraud, or financial exploitation. In Massachusetts alone, **1,162 individuals were affected**, with broader impact across other states still under investigation. The exposed medical records heighten risks of targeted scams, unauthorized access to healthcare services, or blackmail. Victims face potential long-term consequences, including financial loss, credit damage, and emotional distress. Anthem offered identity theft protection services, but the scale and sensitivity of the leaked data underscore severe reputational harm and regulatory scrutiny. Legal firms are pursuing class-action lawsuits for compensation, citing negligence in safeguarding consumer data.

Source: https://www.claimdepot.com/investigations/anthem-data-breach-2025

Anthem, Inc. cybersecurity rating report: https://www.rankiteo.com/company/antheminc

"id": "ANT3992739112125",
"linkid": "antheminc",
"type": "Breach",
"date": "11/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'customers_affected': '1,162+ (Massachusetts alone; '
                                              'full scope under investigation)',
                        'industry': 'Healthcare Insurance',
                        'location': 'United States',
                        'name': 'Anthem, Inc. (Elevance Health, Inc.)',
                        'type': 'For-profit managed health care company'}],
 'customer_advisories': ['Data breach notifications sent to affected '
                         'individuals.',
                         'Encouragement to enroll in identity theft protection '
                         'services.',
                         'Guidance on monitoring accounts and placing fraud '
                         'alerts.'],
 'data_breach': {'data_exfiltration': 'Likely (given exposure of sensitive '
                                      'data)',
                 'number_of_records_exposed': '1,162+ (Massachusetts; total '
                                              'unknown)',
                 'personally_identifiable_information': ['Names',
                                                         'Addresses',
                                                         'Dates of Birth',
                                                         'Social Security '
                                                         'numbers',
                                                         'Driver’s licenses'],
                 'sensitivity_of_data': 'High (includes SSNs, medical records, '
                                        'driver’s licenses)',
                 'type_of_data_compromised': ['Personally Identifiable '
                                              'Information (PII)',
                                              'Protected Health Information '
                                              '(PHI)']},
 'date_publicly_disclosed': '2025-11-19',
 'description': 'Anthem, Inc. (now Elevance Health, Inc.) experienced a '
                'significant data breach exposing sensitive personally '
                'identifiable information (PII) of individuals. The breach was '
                'disclosed to the Massachusetts Attorney General’s office on '
                'Nov. 19, 2025, affecting at least 1,162 individuals in '
                'Massachusetts alone. The investigation into the full scope of '
                'the breach, including its impact in other states, is ongoing. '
                'Exposed data includes names, addresses, dates of birth, '
                'Social Security numbers, medical records, and driver’s '
                'licenses, posing risks of identity theft and fraud.',
 'impact': {'brand_reputation_impact': 'High (potential loss of trust due to '
                                       'exposure of sensitive health and PII '
                                       'data)',
            'data_compromised': ['Names',
                                 'Addresses',
                                 'Dates of Birth',
                                 'Social Security numbers',
                                 'Medical records',
                                 'Driver’s licenses'],
            'identity_theft_risk': 'High',
            'legal_liabilities': 'Potential (class action lawsuits and '
                                 'compensation claims)'},
 'investigation_status': 'Ongoing (scope of breach in other states '
                         'undetermined)',
 'recommendations': ['Sign up for free identity theft protection services if '
                     'offered by Anthem.',
                     'Monitor financial accounts for suspicious activity or '
                     'unauthorized transactions.',
                     'Place a fraud alert on credit reports via major credit '
                     'bureaus.',
                     'Request free annual credit reports to check for '
                     'unauthorized accounts.',
                     'Seek legal assistance to understand rights and pursue '
                     'compensation for damages (e.g., out-of-pocket expenses, '
                     'emotional distress).'],
 'references': [{'source': 'Shamis & Gentile P.A. (Class Action '
                           'Investigation)'},
                {'date_accessed': '2025-11-19',
                 'source': 'Massachusetts Attorney General’s Office (Breach '
                           'Disclosure)'}],
 'regulatory_compliance': {'legal_actions': 'Potential class action lawsuits '
                                            '(investigation by Shamis & '
                                            'Gentile P.A.)',
                           'regulatory_notifications': 'Disclosed to '
                                                       'Massachusetts Attorney '
                                                       'General’s office'},
 'response': {'communication_strategy': 'Disclosure to Massachusetts Attorney '
                                        'General; notifications to affected '
                                        'individuals',
              'recovery_measures': 'Offered free identity theft protection '
                                   'services to affected individuals'},
 'title': 'Anthem, Inc. (Elevance Health) Data Breach',
 'type': 'Data Breach'}
Published by
Jeremy C
Jeremy C
You might also like
Breach cyber

Gainsight

public 2 min read
Gainsight experienced a security breach involving its Salesforce-connected app, where suspicious activity was detected. While the company’s CEO, Chuck…
Jeremy C Jeremy C
Breach cyber

Gainsight

public 2 min read
Gainsight, a customer success platform, suffered a breach linked to its Salesforce-connected app, initially flagged by Salesforce due to unusual…
Jeremy C Jeremy C
Breach cyber

Gainsight

public 2 min read
Gainsight, a customer success management software firm, experienced a breach in its systems that compromised Salesforce customer tokens. The incident…
Jeremy C Jeremy C
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.