Skip to content Skip to navigation

States to Investigate Premera Data Breach

March 26, 2015
by Rajiv Leventhal
| Reprints

Insurance commissioners from multiple states are teaming up to investigate the massive data breach of health insurer Premera.

The breach, which initially occurred on May 5, 2014, but was not detected until Jan. 29, 2015, affected 11 million of the insurer’s customers. It was recently revealed by a report from the U.S. Office of Personnel Management's Office of the Inspector General that Premera was warned that its data protection practices were not up to industry standards right before it was victimized by the major cyber attack.

Now, insurance commissioners in Washington state, Alaska, and Oregon are launching an investigation to examine to look into operations at Premera, based in Mountlake Terrace, Wash. Washington state will lead the market conduct exam. Other states impacted by the ‘Blue Card’ system—Premera’s national provider network—could also join the exam team.

“We take the recent cyberattack at Premera very seriously,” said Mike Kreidler, Washington state insurance commissioner. “Insurance regulators across the country are on high alert given the recent breaches both at Premera and Anthem and we will use every resource within our authority to ensure that consumers are protected and to see that insurers are responding appropriately.”

Market conduct exams involve multiple states and are on-site reviews of an insurer’s financial books, records, transactions and how they relate to a company’s activities in the marketplace. The final market conduct report will be made available to the public; no date exists yet for completion of the exam. Depending on the complexity, exams can take several months to more than a year to complete.



CMS Hospital Compare Website Updated with VA Data

The Centers for Medicare & Medicaid Services (CMS) has announced the inclusion of Veterans Administration (VA) hospital performance data as part of the federal agency’s Hospital Compare website.

CMS Awards Funding to Special Innovation Projects

The Centers for Medicare & Medicaid Services (CMS) has awarded 20, two-year Special Innovation Projects (SIPs) aimed at local efforts to deliver better care at lower cost.

Center of Excellence in Genomic Science to be Established in Chicago

The National Human Genome Research Institute has awarded $10.6 million over five years for the establishment of a new research center in Chicago to advance genomic science.

EHNAC and HITRUST Combine HIPAA Security Criteria, CSF Framework

The Electronic Healthcare Network Accreditation Commission (EHNAC) and the Health Information Trust Alliance (HITRUST) announced plans to streamline their accreditation and certification programs.

Halamka on MACRA Final Rule: “CMS is Listening and I Thank Them”

Health IT notable expert John Halamka, M.D., CIO of Beth Israel Deaconess Medical Center in Boston, recently weighed in on the Medicare Access and CHIP Reauthorization Act (MACRA) final rule.

Texas Patient Care Clinic Hit with Ransomware Attack

Grand Prairie, Texas-based Rainbow Children's Clinic was the victim of a ransomware attack on its IT systems in August, affecting more than 33,000 patients, according to multiple news media reports this week.