Anthem Security Breach: Capital

Since learning of the Anthem cyber-attack, Capital BlueCross has been working diligently to gather more information about the breach and how it might impact any of our members.

Capital BlueCross systems were not impacted by, and were not a part of, the Anthem breach. However, some of our members who received health care services in any of the areas that Anthem serves during the last 10 years may have been affected by the Anthem breach. (Anthem offers Blue plans in California, Colorado, Connecticut, Georgia, Indiana, Kentucky, Maine, Missouri, Nevada, New Hampshire, New York, Ohio, Virginia, and Wisconsin.)

It is our understanding that any CBC member who did not receive health care services in geographic areas covered by Anthem was not impacted by this breach.

Anthem has provided Capital BlueCross with data to determine if any of our members are impacted and we are reviewing that information now. This process will take some time but, once completed, we will be working with Anthem to ensure that affected members are notified and that proper assistance is offered.

Anthem has established a website to provide information about this data breach: The website is being updated as Anthem’s investigation progresses.  Beginning today, February 13, 2015, this site will provide information on how affected members can enroll in credit monitoring and identity protection services, even if the member has not yet received notification from Anthem.



The information provided herein is intended solely for the use of our clients. You may not display, reproduce, copy, modify, license, sell or disseminate in any manner any information included herein, without the express permission of the Publisher or Publishers of articles within.

The information provided is for informational purposes only and does not constitute legal advice. The information above contains only a summary of the applicable legal provisions and does not purport to cover every aspect of any particular law, regulation or requirement. Depending on the specific facts of any situation, there may be additional or different requirements. This is to be used only as a guide and not as a definitive description of your compliance obligations.