Tuesday, October 27, 20:16
Home security $ 6,85 million fine in Premera for data breach

$ 6,85 million fine in Premera for data breach

A fine of $ 6,85 million has been imposed on Premera Blue Cross, an insurance company based in Washington, DC, for one data breach which could expose more than 10 million health information. The fine will be the second largest paid to date Civil Rights Office of the Ministry of Health and Human Services.


The incident was the result of an electronic Phishing, when malicious agents sent an email in 2014 which installed one malware, which gave them access to system Premera IT. According to information, the hackers had access to names, addresses, social security numbers, bank account information and clinical information from the company's health plans. The violation, however, was not detected until January 2015.

In his research, the OCR stated that Premera failed to assess the potential risks and vulnerabilities its system for protected health information and that it did not implement risk management. In addition to the fine, the company will have to implement a series of corrective actions and its progress will be monitored for two years. The company will also need to present a risk analysis and a risk management plan, which will be approved by the Office of Civil Rights.

"If the big health insurers do not invest in time and effort to identify their vulnerabilities in safety, whether they are technical or human, surely the hackerSaid OCR Director Roger Sevrino in a press release. "This case strongly shows the damage that occurs when hackers are allowed to roam without being detected in a system for almost nine months."

An Oregon federal judge approved a separate settlement in March, with a lawsuit filed after the violation. Under the agreement, Premera will put $ 32 million into a settlement fund to cover the cost of credit tracking and identity theft insurance services for members. The company will also spend $ 42 million to boost its security over the next three years.


Please enter your comment!
Please enter your name here

Absent Mia
Absent Miahttps://www.secnews.gr
Being your self, in a world that constantly tries to change you, is your greatest achievement



Data breach in a law firm exposes data of Google employees

Immigration law firm Fragomen, Del Rey, Bernsen & Loewy, LLP revealed that it suffered a data breach that led to the leakage of personal data ...

How to install a .watchface file on Apple Watch

The Apple Watch lets you customize the faces of the watch to display all kinds of useful information. But did you know ...

The five biggest data breaches of the 21st century

Data is becoming more and more sought after as our daily lives become more digitized. The technology giants that monopolize data are ...

Microsoft is limiting the availability of Windows 10 20H2

Microsoft is currently restricting the availability of Windows 10 20H2 to provide all users who want to ...

How to enable the new Chrome Read more feature

The latest version of Google Chrome browser, v86, released earlier this month, contains a secret feature called Read ...

How to choose a custom color for the Start menu

Starting with the October 2020 update, Windows 10 is the default on a theme that removes bright colors from ...

NASA telescope discovers drinking water on the moon

Eleven years ago, a spacecraft changed our view of the moon forever. The data collected by ...

Microsoft: Enhances password spray attack detection capabilities

Microsoft has significantly improved the ability to detect password spray attacks in the Azure Active Directory (Azure AD) and has reached the point ...

How to prevent companies from finding our phone number

In the age of advertising, the more user information is known the more convenient it is for companies. And in particular, the ...

Violation in a psychotherapy clinic led to blackmail of patients

Two years ago, a cyber attack took place in a Finnish psychotherapy clinic, which resulted in data theft and ransom demand. Now,...