Missing Health Net drives contained members, employees, and provider information
Not surprisingly, Health Net has now issued a press release concerning a breach disclosed in a press release by Connecticut’s Attorney General:
Health Net, Inc. today announced that it is conducting an investigation into several server drives that are unaccounted for from its data center operation located in Rancho Cordova, Calif.
This investigation follows notification by IBM, Health Net’s vendor responsible for managing Health Net’s IT infrastructure, that it could not locate several server drives.
After a forensic analysis, Health Net has determined that personal information of some former and current Health Net members, employees and health care providers is on the drives, and may include names, addresses, health information, Social Security numbers and/or financial information.
While the investigation continues, Health Net has made the decision out of an abundance of caution to notify the individuals whose information is on the drives.
To help protect the personal information of affected individuals, Health Net is offering them two years of free credit monitoring services, including fraud resolution and, if necessary, restoration of credit files, as well as identity theft insurance. These services will be provided through the Debix Identity Protection Network.
For more information, please visit the company’s website at www.healthnet.com or call 1-855-434-8081.
Although the press release refers people to the company’s web site for more information, there doesn’t seem to be anything on the web site concerning this breach other than the press release itself.
Update: A copy of their March 14th letter to those affected is available on Vermont’s web site.