600,000 in Capital Region May Be Affected by Data Breach
Newkirk Products, a company based out of Albany has learned that someone accessed their system back in May which contains member information. This could affect you and up to 600,000 locally within the Capital Region.
The company, which prints ID cards and some employers premium bills for healthcare companies says that the server included names, addresses, member and group ID numbers and names of dependents on a given health plan.
Thankfully information like members social security numbers, banking information, or medical information were not included on the hacked server.
3.3 million insurance customers may be affected overall.
A statement was released from CDPHP:
CDPHP has been notified by its vendor, Newkirk Products, Inc. (Newkirk), of a cyber security incident that may impact some of our members. Newkirk, which was acquired by Broadridge Financial Solutions, Inc. on July 1, 2016, is a service provider that issues health care ID cards, as well as member and employer premium bills (where applicable) for CDPHP.
To date, there is no indication that any information has been used inappropriately. In addition, no CDPHP systems have been impacted as a result of this incident.
An investigation is currently underway, and the appropriate law enforcement and government agencies have been notified. Members who may have been impacted are receiving notification by mail, and Newkirk is offering two years of free identity protection and restoration services from AllClear ID to those members.
Members may contact the AllClear ID call center at 1-855-303-9773 between the hours of 9 a.m. and 9 p.m. EST Monday to Saturday. Information regarding the incident is also available atwww.newkirkproductsfacts.com.
As well as a statement from BlueShield of Northeastern New York:
BlueShield of Northeastern New York has been made aware of a cybersecurity incident involving one of our company's third-party service providers, Newkirk. BlueShield has partnered with this entity to produce and mail subscriber identification cards since October 2014.
ID card images of about 70,000 BlueShield subscribers were accessed without authorization. The information on these cards included name, mailing address, type of plan, subscriber and group ID number, and other information found on ID cards such as, in some cases, names of members enrolled on their policy (dependents). No Social Security numbers, date of birth, financial information, medical information or any insurance claims information were accessed.
BlueShield will notify all potentially impacted current and former subscribers by U.S. Postal mail with information on two years of free identity protection and restoration services being offered by Newkirk through AllClear ID. Prior to receiving the letter, subscribers can visit www.newkirkproductsfacts.com or contact the AllClear ID call center at 1-855-303-9773 (TTY/TDD: 711) between the hours of 9 a.m. and 9 p.m. Monday to Saturday.
Maintaining the privacy and security of our members' personal information is one of our highest priorities. We are focused on helping our members through this situation with the information and support they need.