Gold Coast Health Plan warns of data breach
Tips on how not to fall for clicking a bogus link in an e-mail and losing your online identity, in this edition of #Tech 101 with Jefferson Graham.
Gold Coast Health Plan said about 37,000 clients’ health information may have gotten into crooks’ hands due to a data breach.
Potentially affected by the breach are clients whose claim information was sent by email. The data included health plan ID numbers, dates of medical service, and in some cases, names, dates of birth and medical procedure codes, Gold Coast said Friday in a news release.
The attackers did not gain access to clients’ Social Security numbers or financial information, according to Gold Coast, a publicly funded entity that administers Medi-Cal health insurance to nearly 200,000 low-income residents of Ventura County.
Also in the news:
Not all of those affected had the same information breached, the agency’s public relations manager, Susana Enriquez-Euyoque, said Saturday. For some, only one element was disclosed, she said, while others had two or more items compromised.
Those affected by the breach, totaling about 37,000 people, will be notified by mail, Enriquez-Euyoque said.
Officials with the health plan believe the attackers were trying to fraudulently transfer Gold Coast funds to their account. Gold Coast, however, said it is not aware that any misuse or attempted misuse of the information has occurred.
Clients who want to learn whether they were affected can call 888-599-2126 from 6 a.m. to 6 p.m. Monday through Friday, Gold Coast said. More information is also available at https://www.goldcoasthealthplan.org.
Gold Coast urged those affected to check their credit reports and look for suspicious medical bills. Credit reports can be ordered from the three credit reporting agencies free each year by calling 1-877-322-8228 or visiting http://www.annualcreditreport.com.
Phishing scams are proliferating as intensely as ever; it’s up to you to avoid getting hooked.
As a result of the breach, Gold Coast said it is offering identity theft protection services through ID Experts and providing affected clients with MyIDCare.
The data breach was linked to a phishing email attack, according to Gold Coast. In such an attack, hackers often send a fake link that appears to be tied to a legitimate site. When the victim clicks on the link, data can be compromised.
The attack compromised one employee’s email account, giving the attacker access to emails sent to the account between June 18 and Aug. 1, Gold Coast said.
MORE: Simi police arrest Camarillo couple over Target fraud scheme
Gold Coast said that when the problem was discovered on Aug. 9, it halted the attack, notified law enforcement authorities, disabled the compromised account, required a password change, maintained heightened monitoring, had a cybersecurity firm assess the problem, improved information security and worked on educating employees about security issues, with an expanded focus on phishing emails.
“We deeply regret the incident and the concern it has caused our members,” Gold Coast said in the news release.
Staff writer Gretchen Wenner contributed to this report.
Read or Share this story: https://www.vcstar.com/story/news/2018/10/06/gold-coast-health-plan-warns-data-breach/1547037002/