10 April 2008
Wellpoint Data Publicly Exposed
Wellpoint, a big health insurance company (I believe the own Anthem Blue Cross Blue Shield among others), had 128,000 records pulled from a data source that had been been publicly accessible for 12 months. From the sound of it, it was the company’s full records on customers, including ssn, medical information, prescription drug information, etc. I wonder if the lack of security was a HIPAA violation. It will be interesting if irresponsible data practices start costing companies more than just negative PR.