HA MEM Continued
<March XX, 2015>
<FIRST NAME> <LAST NAME> <ADDRESS LINE 1>
<ADDRESS LINE 2> <CITY>, <STATE> <ZIP>
Dear <FIRST NAME> <LAST NAME>:
You are receiving this letter because computer thieves or “hackers” previously gained access to a computer system at Premera Blue Cross, where some of your personal information was stored. Please read through this letter for details, including specific steps you can take right away to protect yourself from possible identity theft. Please note that you should receive a follow-up letter in coming days directly from Premera, providing you with additional information.
How this Happened
This all began on January 29 when Premera discovered that someone had broken into its computer system. Although Premera believes the hackers’ actions may have started on May 5, 2014, their attack was not detected until January 29. The hackers were able to access certain personal information that Premera has collected over the past 13 years in order to process health insurance or health plan claims for millions of Americans. Premera has stated that it waited until March 17 to inform our company and others about the cyber attack because it was advised that, before going public with this information, Premera needed to take the time to cleanse its computer systems and take other steps to try to keep the hackers from doing further harm.
Your personal information is involved because you received health care services from a doctor, hospital or other health care provider who filed a claim with Premera. Even though your health plan benefits are or were directly administered by our company, Premera helped process health plan claims whenever you received health care services in the states of Washington or Alaska, where Premera operates.
What kind of Personal Information this Involves
The specific kinds of personal information that the Premera hackers may have accessed include your name, address, telephone number, date of birth, health plan identification number, Social Security number (if it is or was part of your health plan identification number or patient identifier), email address (if you provided it to Premera) and health plan or insurance claims information, including medical information.
How to Protect Yourself in this Situation
Premera has stated that its investigation has not determined that any data was removed from Premera’s computer systems, nor does Premera have evidence at this time that any of the data has been used inappropriately. It is possible that nothing will happen to you as a result of this incident. However, you should be looking out for any suspicious activity involving your name or account numbers.
Premera is offering two years of credit monitoring and identity theft protection services – at no charge to you. Specifically, Premera will provide you a free two-year membership in Experian’s® ProtectMyID® Alert (for adults) or Experian’s Family Secure® (for minors) to help detect possible misuse of your personal information and provide you with identity protection services focused on immediate identification and resolution of identity theft.
To access these free Experian services, please note the following:
1. Visit the ProtectMyID website: www.protectmyid.com/premera
2. Make sure you enroll by September 30, 2015 (you will not be able to enroll after that date)
HA MEM NOTE: A credit card is not required for enrollment in the Experian services. Once your enrollment in ProtectMyID is
complete, you should carefully review your credit report for inaccurate or suspicious items. If you have any questions about ProtectMyID or Family Secure, need help understanding something on your credit report, or suspect that an item on your credit report may be fraudulent, please contact Experian’s customer care team at
Information About Preventing Identity Theft
Even if you choose not to take advantage of the free services outlined above, you should watch carefully for any signs of fraud or identify theft by reviewing your credit card, bank, and other financial statements for any suspicious activity. You may also wish to obtain a copy of your credit report, free of charge to you, directly from each of the three national credit reporting agencies listed below. You may order such a credit report by going online at
www.annualcreditreport.com or by calling toll free to 1-877-322-8828. The three national credit reporting agencies
and their contact information are as follows:
Equifax PO BOX 740241 ATLANTA GA 30374-0241 1-800-685-1111 equifax.com Experian PO BOX 9532 ALLEN TX 75013 1-888-397-3742 experian.com TransUnion PO BOX 2000 Chester, PA 19022 1-800-680-7289 transunion.com
In addition, if you believe you are the victim of identity theft or have reason to believe your personal information has been misused, you should immediately contact the Federal Trade Commission and/or the Office of the Attorney General in your home state. Contact information for the Federal Trade Commission is: FTC, 600 Pennsylvania Avenue, NW, Washington, D.C. 20580, www.ftc.gov/idtheft, 1-877-438-4338.
You can obtain information from these sources about fraud alerts and security freezes, as well as additional steps you can take to avoid identify theft. You should also contact your local law enforcement authorities and file a police report if you suspect criminal or fraudulent activity using your personal information.
Premera regrets that the hackers’ actions have affected you and your personal information. Premera is committed to doing what it can to help prevent any other problems of this nature. As soon as Premera discovered the computer attack, Premera began working to shut down any further access by the hackers. Premera quickly notified the FBI, and is working with the FBI to try to figure out who the hackers are and how they managed to invade Premera’s computer system. Premera also has hired a company called Mandiant, which is one of the world’s top security companies, to help them investigate this matter.
Please note that there is no evidence that any of your personal information in our files has been affected in any way – to our knowledge, this “hacking” incident was limited to Premera and did not affect our company’s computer systems or records.
Our goal is to maintain the privacy and security of your personal information, and to help you protect yourself from any harm due to the hackers’ illegal attack on Premera’s computer system. We appreciate your understanding as we and Premera try to work through this very difficult process. If you have further questions about the Premera incident, you may visit http://www.premeraupdate.com, or call Premera at 1-800-768-5817 (between the hours of 5:00 a.m. and 8:00 p.m., Pacific Time, Monday through Friday) to speak to them directly. TTY/TDD users should call 1-877-283-6562.