BlueCross BlueShield of Tennessee

Some member reports from BlueCross BlueShield of Tennessee were delivered to group benefit administrators due to a computer error.

By mistakenly delivering a report titled the June 2017 Future Termination of Dependent Coverage, 657 employers that have accounts with BCBST obtained information intended for other businesses.

The report contained information on 2,100 members, including their names, birthdates, plan types, dates of coverage, and member identification numbers.

The compromised data did not include social security numbers, addresses, bank or financial information, or health information.

On July 5, BCBST became aware of the intrusion. The reports were sent to companies, who were instructed to delete them and certify their destruction with the insurance.

People whose information was compromised were notified with a letter and offered a free identity protection service for up to two years.

Source: https://www.tennessean.com/story/money/industries/health-care/2017/07/21/bcbst-glitch-sends-erroneous-reports-657-employers/500568001/

TPRM report: https://scoringcyber.rankiteo.com/company/bcbst

"id": "blu1151261022",
"linkid": "bcbst",
"type": "Data Leak",
"date": "07/2017",
"severity": "50",
"impact": "2",
"explanation": "Attack limited on finance or reputation"

{'affected_entities': [{'customers_affected': 2100,
                        'industry': 'Healthcare',
                        'location': 'Tennessee',
                        'name': 'BlueCross BlueShield of Tennessee',
                        'type': 'Health Insurance'}],
 'attack_vector': 'Computer Error',
 'customer_advisories': 'Letter notification and offer of free identity '
                        'protection service',
 'data_breach': {'number_of_records_exposed': 2100,
                 'personally_identifiable_information': ['Names',
                                                         'Birthdates',
                                                         'Member '
                                                         'Identification '
                                                         'Numbers'],
                 'sensitivity_of_data': 'Medium',
                 'type_of_data_compromised': ['Names',
                                              'Birthdates',
                                              'Plan Types',
                                              'Dates of Coverage',
                                              'Member Identification Numbers']},
 'date_detected': '2017-07-05',
 'description': 'Some member reports from BlueCross BlueShield of Tennessee '
                'were delivered to group benefit administrators due to a '
                'computer error. The report contained information on 2,100 '
                'members, including their names, birthdates, plan types, dates '
                'of coverage, and member identification numbers.',
 'impact': {'data_compromised': ['Names',
                                 'Birthdates',
                                 'Plan Types',
                                 'Dates of Coverage',
                                 'Member Identification Numbers']},
 'post_incident_analysis': {'root_causes': 'Computer Error'},
 'references': [{'source': 'BlueCross BlueShield of Tennessee'}],
 'response': {'communication_strategy': 'People whose information was '
                                        'compromised were notified with a '
                                        'letter and offered a free identity '
                                        'protection service for up to two '
                                        'years',
              'containment_measures': 'Employers were instructed to delete the '
                                      'reports and certify their destruction'},
 'title': 'BlueCross BlueShield of Tennessee Data Breach',
 'type': 'Data Breach',
 'vulnerability_exploited': 'Data Mishandling'}