WellPoint will pay $1.7M in online privacy inquiry PDF  | Print |  E-mail
Written by Associated Press   
Friday, 12 July 2013 06:18

NEW YORK (AP) — The U.S. Department of Health and Human Services said Thursday that health insurer WellPoint Inc. will pay $1.7 million to resolve allegations it left the information of more than 612,000 members available online because of inadequate safeguards.

The agency said that between Oct. 23, 2009 and March 7, 2010, security weaknesses in an online application database left the information of 612,402 people accessible to unauthorized users. That information included names, birthdates, addresses, telephone numbers, Social Security numbers, and health data.

The Health and Human Services Department said WellPoint didn't have adequate policies for authorizing access to the database, didn't perform a needed technical evaluation after a software upgrade, and did not have technical safeguards to verify that the people or entities seeking access were authorized to view the information in the database.

WellPoint, which is based in Indianapolis, reported the breach to the Health and Human Services Department. The agency then started an investigation, saying WellPoint's actions may have violated the Health Insurance Portability and Accountability Act, or HIPAA.

Shares of WellPoint rose 66 cents to $85.41 on Thursday, reaching a five-year high of $85.60 as the markets climbed to record levels. The stock gained 15 cents to $85.56 in aftermarket trading.


Copyright 2013 The Associated Press.

 

Front Page Stories

Body of BGSU student found
07/23/2014 | Sentinel-Tribune Staff
article thumbnail

A missing poster for Cory Barron, is posted on a light pole along West 6th Street in Cle [ ... ]


Chinese lanterns may have ignited fire
07/23/2014 | PETER KUEBECK, Sentinel Staff Writer
article thumbnail

File photo. A firefighter is seen near a fire engulfing a pallet yard on West Broadway S [ ... ]


Other Front Page Articles