WebTPA data breach impacts 2.4 million insurance policyholders

The WebTPA Employer Services data breach disclosed earlier this month is impacting close to 2.5 million individuals, the U.S. Department of Health and Human Services notes.
Some of the impacted people are customers at large insurance companies such as The Hartford, Transamerica, and Gerber Life Insurance.
WebTPA is a GuideWell Mutual Holding Corporation subsidiary and a third-party administrator that provides customized administrative services to health plans and insurance companies.
It employs 18,000 people and generates $103 million in annual revenue.
The breach happened last year but it was discovered last December, when the company found evidence of suspicious activity on its network.
A recent update on the U.S. Department of Health and Human Services data breach portal shows that the number of affected individuals is 2,429,175.
According to the notification on WebTPA's website, the threat actor had access to personal data for five days, between April 18 and April 23, 2023.
WebTPA discovered the breach only in late December and immediately launched an investigation.
WebTPA informed benefit plan providers and insurance companies of the data breach on March 25, 2024.
The investigation revealed that financial account information, credit card numbers, medical treatment, and diagnostic information have not been exposed to unauthorized access.
Multiple health plan and insurance organizations have published notifications saying that the WebTPA data breach has impacted some of their customers.
In the data breach notification, WebTPA has included instructions on how to enroll for two years of credit monitoring, identity theft protection, and fraud consultation services through Kroll, which is possible until August 1st. Although WebTPA says it's not aware of any cases of misuse of the exposed data, affected individuals should remain vigilant for communications from potential fraudsters and refrain from sharing any personal or financial information in such cases.
It is also advisable to review credit reports carefully and consider placing a security freeze on credit files to mitigate fraud risks.
MediSecure e-script firm hit by 'large-scale' ransomware data breach.
Kaiser Permanente: Data breach may impact 13.4 million patients.
Banco Santander warns of a data breach exposing customer info.
Singing River Health System: Data of 895,000 stolen in ransomware attack.
DocGo discloses cyberattack after hackers steal patient health data.


This Cyber News was published on www.bleepingcomputer.com. Publication date: Fri, 17 May 2024 14:45:31 +0000


Cyber News related to WebTPA data breach impacts 2.4 million insurance policyholders

WebTPA data breach impacts 2.4 million insurance policyholders - The WebTPA Employer Services data breach disclosed earlier this month is impacting close to 2.5 million individuals, the U.S. Department of Health and Human Services notes. Some of the impacted people are customers at large insurance companies such ...
7 months ago Bleepingcomputer.com
Cyber Insights 2023: Cyberinsurance - The result is more than a dozen features on subjects ranging from AI, quantum encryption, and attack surface management to venture capital, regulations, and criminal gangs. In 2022, Russia invaded Ukraine with the potential for more serious and more ...
1 year ago Securityweek.com
With Attacks on the Upswing, Cyber-Insurance Premiums Poised to Rise Too - An increase in cyber-insurance claims in 2023, driven by a more active threat landscape, will likely mean that last year's price plateau in cyber-insurance premium costs will be short-lived, according to industry experts. While premium costs fell by ...
11 months ago Darkreading.com
Cyber Insurance for Businesses: Navigating Coverage - To mitigate these risks, many businesses opt for cyber insurance. With the wide range of policies available, navigating the world of cyber insurance can be overwhelming. In this article, we will delve into the complexities of cyber insurance and ...
10 months ago Securityzap.com
Cyber Insurance: A Smart Investment to Protect Your Business from Cyber Threats in 2023 - Don't wait until it's too late - get cyber insurance today and secure your business for tomorrow. According to the U.S. Federal Trade Commission, cyber insurance is a particular type of insurance that helps businesses mitigate financial losses ...
10 months ago Cyberdefensemagazine.com
Making Cyber Insurance Available for Small Biz, Contractors - The soaring costs of recovering from a security incident or data breach is driving interest in cyber insurance. While cyber insurance is typically viewed as a product mainly for large organizations seeking coverage and protection against ...
1 year ago Darkreading.com
Tech Security Year in Review - In this Tech Security Year in Review for 2023, let's look into the top data breaches of the past year. Each factor contributes to the growing threatscape, demanding a proactive and adaptable cybersecurity approach to safeguard your organization ...
11 months ago Securityboulevard.com
Fighting ransomware: A guide to getting the right cybersecurity insurance - While the cybersecurity risk insurance market has been around for more than 20 years, the rapidly changing nature of attacks and the rise in the ransomware epidemic has markedly changed the nature of cyber insurance in recent years. It's more ...
11 months ago Scmagazine.com
How to perform a proof of concept for automated discovery using Amazon Macie | AWS Security Blog - After reviewing the managed data identifiers provided by Macie and creating the custom data identifiers needed for your POC, it’s time to stage data sets that will help demonstrate the capabilities of these identifiers and better understand how ...
2 months ago Aws.amazon.com
5 Ways to Counteract Increasing Cyber Insurance Rates - Despite this threat, only 55% of organizations have some form of cyber insurance, and only 19% have coverage for cyber events beyond $600,000. As the cybersecurity landscape continues to evolve, businesses must carefully evaluate their risk exposure ...
10 months ago Cybersecurity-insiders.com
War or Cost of Doing Business? Cyber Insurers Hashing Out Exclusions - Drugmaker Merck's long legal battle with its insurance companies over the damages caused to its business by the NotPetya wiper worm ended last week when the company settled with a bevy of insurance companies that had refused to pay $699 million of ...
11 months ago Darkreading.com
Collection agency FBCS ups data breach tally to 3.2 million people - Debt collection agency Financial Business and Consumer Solutions now says over 3.2 million people have been impacted by a data breach that occurred in February. FBCS is a nationally licensed debt collection agency in the U.S., specializing in ...
5 months ago Bleepingcomputer.com
Data Breach Response: A Step-by-Step Guide - In today's interconnected world, organizations must be prepared to respond swiftly and effectively in the face of a data breach. To navigate these challenges, a well-defined and comprehensive data breach response plan is essential. Let's explore the ...
10 months ago Securityzap.com
Welltok data breach exposes data of 8.5 million US patients - Healthcare SaaS provider Welltok is warning that a data breach exposed the personal data of nearly 8.5 million patients in the U.S. after a file transfer program used by the company was hacked in a data theft attack. Welltok works with health service ...
1 year ago Bleepingcomputer.com
Sav-Rx discloses data breach impacting 2.8 million Americans - Prescription management company Sav-Rx is warning over 2.8 million people in the United States that it suffered a data breach, stating that their personal data was stolen in a 2023 cyberattack. A&A Services, doing business as Sav-RX, is a pharmacy ...
6 months ago Bleepingcomputer.com
Data breaches at Viamedis and Almerys impact 33 million in France - Data breaches at two French healthcare payment service providers, Viamedis and Almerys, have now been determined to impact over 33 million people in the country. Viamedis and Almerys provide healthcare and insurance services in France with ...
10 months ago Bleepingcomputer.com
Why CISOs Need to Make Cyber Insurers Their Partners - Organizations may perceive the lengthy and involved process, paired with rising premiums, as insurance companies taking advantage of them. Insurance companies are struggling to balance soaring loss ratios that were particularly rampant a couple years ...
11 months ago Darkreading.com
Takeaways from Cisco at InsureTech Connect 2023 - InsureTech Connect 2023, the premier conference for the insurance technology industry, brought together 9,000+ innovators, leaders, and solution providers to Las Vegas in early November to explore the latest trends, technologies, and disruptions in ...
1 year ago Feedpress.me
Disadvantages of Cyber Insurance - Cyber insurance provides financial protection for businesses in the event of a cyber attack. Despite its benefits, there are several drawbacks to consider before committing to a policy. Evolving Cyber Threats: The landscape of cyber threats is ...
7 months ago Cybersecurity-insiders.com
Essential Tips for Claiming Cyber Insurance Coverage - In an era dominated by digital transactions and interconnected networks, the importance of cyber insurance cannot be overstated. Cybersecurity threats loom large, making it crucial for businesses to not only invest in robust preventive measures but ...
1 year ago Cybersecurity-insiders.com
Virginia Farm Bureau Notifies 261,187 of October 2022 Data Breach - On February 15, 2024, Virginia Farm Bureau filed a notice of data breach with the Attorney General of Maine after the company's IT system was targeted in a ransomware attack. In this notice, VFB explains that the incident resulted in an unauthorized ...
10 months ago Jdsupra.com
SEC: Financial orgs have 30 days to send data breach notifications - The Securities and Exchange Commission has adopted amendments to Regulation S-P that require certain financial institutions to disclose data breach incidents to impacted individuals within 30 days of discovery. Regulation S-P was introduced in 2000 ...
7 months ago Bleepingcomputer.com
First Financial Security Notifies Consumers of Data Breach Following October 2023 Ransomware Attack - On January 19, 2024, First Financial Security, Inc. filed a notice of data breach with the Attorney General of California after discovering that the company was recently targeted in a ransomware attack. In this notice, FFS explains that the incident ...
10 months ago Jdsupra.com
Data breach at French healthcare services firm puts millions at risk - French healthcare services firm Viamedis suffered a cyberattack that exposed the data of policyholders and healthcare professionals in the country. Though the company's website remains offline at the time of writing, an announcement was posted on ...
10 months ago Bleepingcomputer.com
HealthEquity data breach exposes protected health information - Healthcare fintech firm HealthEquity is warning that it suffered a data breach after a partner's account was compromised and used to access the Company's systems to steal protected health information. The Company says it detected the compromise after ...
5 months ago Bleepingcomputer.com

Latest Cyber News


Cyber Trends (last 7 days)


Trending Cyber News (last 7 days)