October 1, 2020
LANSING – Attorney General Dana Nessel today announced that Michigan has joined a $39.5 million settlement with national health care insurer Anthem stemming from the massive 2014 data breach that involved the personal information of 78.8 million Americans. Through the settlement, Anthem has reached a resolution with the 43-state coalition and California. Michigan will receive $354,542.05 from the settlement. In addition to the payment, Anthem has also agreed to a series of data security and good governance provisions designed to strengthen its practices going forward.
In February 2015, Anthem disclosed that cyber attackers had infiltrated its systems beginning in February 2014 by using malware installed through a phishing email. The attackers were ultimately able to gain access to Anthem's data warehouse where they harvested names, dates of birth, Social Security numbers, health care identification numbers, home addresses, email addresses, phone numbers and employment information for 78.8 million Americans. In Michigan, 636,075 residents were affected by the breach.
"In this digital age, email scammers and cyber attackers are constantly attempting to steal personal information and we all must be on guard for new tactics," Nessel said. "Moreover, the businesses and entities that possess our private information must implement safety measures prepared to withstand potential cyber attacks. When companies do not make every effort to protect our personal data, they must be held accountable."
More on Michimich.com
- Michigan: Video: In wake of road worker deaths, Gov. Whitmer reminds travelers to drive like this is your workplace
- Michigan: 'Railroad Dock' boating access site to close temporarily in Menominee County
- Michigan: Maintenance project on M-55/I-75 BL near West Branch starts next week
- Michigan Indian Legal Services Halloween Party
- Flagstar Bancorp, Inc. Announces Proposed Offering of Subordinated Notes
Under the settlement, Anthem has agreed to a series of provisions designed to strengthen its security practices going forward. Those include:
- A prohibition against misrepresentations regarding the extent to which Anthem protects the privacy and security of personal information; Implementation of a comprehensive information security program, with regular security reporting to the Board of Directors and prompt notice of significant security events to the CEO; Specific security requirements with respect to segmentation, logging and monitoring, anti-virus maintenance, access controls and two-factor authentication, encryption, risk assessments, penetration testing, and employee training, among other requirements; and Third-party security assessments and audits for three years, as well as a requirement that Anthem make its risk assessments available to a third-party assessor during that term.
In the immediate wake of the breach, at the request of the Connecticut Office of the Attorney General, Anthem offered an initial two years of credit monitoring to all affected U.S. individuals.
In addition to this settlement, Anthem previously entered into a class-action settlement that established a $115 million fund to pay for additional credit monitoring, cash payments of up to $50 and reimbursement for out-of-pocket losses for affected consumers. The deadlines for consumers to submit claims under that settlement have since passed.
More on Michimich.com
- New Semiconductor Chip from NS Nanotech Emits Far-UVC Disinfectant Ultraviolet Light to Neutralize Coronavirus
- Launching New No Touch Tool Made from EPA Registered Alloy
- Michigan: MDHHS announces $50,000 grant for direct care worker infection control training
- Michigan: AG Lawsuit Stops Trump Administration's Cuts to SNAP Food Assistance for 700,000 Unemployed Americans
- Michigan Civil Rights Commission Recognizes Contributions of Michigan's LGBTQ Community, Reaffirms Commitment to Protection for LGBTQ Civil Rights under ELCRA
Attorney General Nessel is part of this settlement along with the attorneys general of Alaska, Arizona, Arkansas, Colorado, Connecticut, the District of Columbia, Delaware, Florida, Georgia, Hawaii, Idaho, Illinois, Indiana, Iowa, Kansas, Kentucky, Louisiana, Maine, Maryland, Massachusetts, Minnesota, Mississippi, Missouri, Nebraska, New Hampshire, New Jersey, New York, Nevada, North Carolina, North Dakota, Ohio, Oklahoma, Oregon, Pennsylvania, Rhode Island, South Carolina, Tennessee, Texas, Virginia, Washington, West Virginia and Wisconsin.
The Michigan Department of Attorney General has issued a consumer alert on email scams encouraging residents to beware of fraudulent emails and other attempts to steal personal and financial information.
Latest on Michimich.com
- Rose McGowan to Headline Movement for a People's Party Debate Response
- Waterford Dentist Contributes To Nationally Renowned Textbook
- Michigan: Public comment period closes for Enbridge Line 5 tunnel proposal
- Michigan: MDHHS issues Emergency Order updating requirements for residential care facilities to allow for indoor visitation
- Michigan: Voting resources available for housing insecure or homeless individuals
- Michigan: U.P. roadside parks set to close for season
- Michigan: UIA offers new phone appointment option for claimants requiring one-on-one support
- BeBop Sensors' Forte Data Glove Adds Haptic Interaction Support for Oculus 2 and Unreal Engine
- LYRIC names Toni Newman as New Interim Executive Director and Jodi Schwartz as President
- BitRouter Announces Dihedral Software Release for its ATSC3pro Receiver at NAB Show New York
- Continental Structural Plastics, Inapal Components Reduce Weight, Complexity for New Luxury SUV in Europe
- Meridian and Samsung Donate Smartphone Devices to Healthcare Providers in Michigan
- WeFunder Secured and Launches Crowdfunding for Emerging AI Startup
- Braeden Lichti - What's Next for the Healthcare Sector?
- Scottsdale Plastic Surgeon Dr. Patti Flint now offering sought-after lip lift procedure
- Entrepreneur, Investor Signs $100,000 Contract With Hotel To Host First Female Founders Pitch Summit Despite Pandemic
- USDA approves Michigan's industrial hemp state plan
- Michigan: Voters should hand-deliver absentee ballots to avoid postal delays
- Michigan: AG Nessel Joins Coalition Opposing Alabama's Attempt to Ban Curbside Voting
- New Partnership Aims to Create COVID-Safe Zones for Return to Work, Travel, Conferences and Live Events