A health insurance and benefit plan provider headquartered in Texas has revealed a data intrusion that compromised the information of nearly 2.5 million individuals including some whose Social Security numbers were compromised
The company detected “evidence of suspicious activity” on December 28, 2023, according to a data breach notification published earlier this month by WebTPA. As a result, an investigation was initiated “to mitigate the threat and further secure our network.”
The investigation “concluded that the unauthorized actor may have obtained personal information between April 18 and April 23, 2023,” roughly eight months before the company discovered the breach, according to the company.
The potentially compromised data may have comprised the following: name, contact details, date of birth, date of death, Social Security number, and insurance particulars. “Not all data elements were available for all individuals,” the organization stated in the website notice.
The breach was disclosed by WebTPA to the U.S. Department of Health and Human Services on May 8, according to the official website of the federal agency. WebTPA disclosed in this report that the breach impacted 2,429,175 individuals and transpired on a “network server.”
WebTPA further stated that “no misuse of benefit plan member information” is to its knowledge and that the intrusion did not affect “treatment or diagnostic information,” credit card numbers, or financial account details.
