The California Office of the Attorney General reported that CareFirst BlueCross BlueShield experienced a cyberattack on June 19, 2014, which potentially allowed unauthorized access to a limited amount of personal information. The breach was reported on May 20, 2015, and involved names, subscriber IDs, email addresses, and dates of birth, but did not compromise passwords or sensitive financial information.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-56038
TPRM report: https://www.rankiteo.com/company/carefirst-bluecross-blueshield
"id": "car102072625",
"linkid": "carefirst-bluecross-blueshield",
"type": "Breach",
"date": "6/2014",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'industry': 'Healthcare',
'name': 'CareFirst BlueCross BlueShield',
'type': 'Health Insurance Provider'}],
'data_breach': {'personally_identifiable_information': True,
'type_of_data_compromised': ['names',
'subscriber IDs',
'email addresses',
'dates of birth']},
'date_detected': '2014-06-19',
'date_publicly_disclosed': '2015-05-20',
'description': 'The California Office of the Attorney General reported that '
'CareFirst BlueCross BlueShield experienced a cyberattack on '
'June 19, 2014, which potentially allowed unauthorized access '
'to a limited amount of personal information. The breach was '
'reported on May 20, 2015, and involved names, subscriber IDs, '
'email addresses, and dates of birth, but did not compromise '
'passwords or sensitive financial information.',
'impact': {'data_compromised': ['names',
'subscriber IDs',
'email addresses',
'dates of birth']},
'references': [{'source': 'California Office of the Attorney General'}],
'title': 'CareFirst BlueCross BlueShield Data Breach',
'type': 'Data Breach'}