CareFirst BlueCross BlueShield announced yesterday that hackers broke into one of its databases and made off with a variety of sensitive customer information. Social Security numbers, medical claims, employment, payment card and financial information were not exposed in the breach. The breach did not expose passwords, which were both encrypted and stored on a separate server. Affected customers will receive an email or an unsolicited phone call with a code redeemable for two years of free credit monitoring. CareFirst is not responding to requests for specific details about the breach as the incident is part of an ongoing FBI investigation.
Source: https://threatpost.com/1-1-million-affected-by-carefirst-bluecross-blueshield-breach/112951/