Thursday, June 4, 2020
  • Automation: Helping Speed Vulnerability Response
  • Whitepaper: Self-Supervised Learning – AI For Complex Network Security
  • Data Breach Litigation Waivers: Be Careful What You Wish For
  • VMWare vCenter takeover via vCloud Director (CVE-2020–3956 filed by Citadelo on June 1st, 2020)
  • Examining the Open-source Python Application CVEs That Led to the Cisco Server Breach

Security Boulevard

The Home of the Security Bloggers Network

Community Chats Webinars Library
  • Home
    • Cybersecurity News
    • Features
    • Industry Spotlight
    • News Releases
  • Security Bloggers Network
    • Latest Posts
    • Contributors
    • Syndicate Your Blog
    • Write for Security Boulevard
  • Webinars
    • Upcoming
    • On-Demand
  • Chat
    • Security Boulevard Chat
    • Marketing InSecurity Podcast
  • Library
  • Related Sites
    • MediaOps Inc.
    • DevOps.com
    • Container Journal
    • Digital Anarchist
    • SweetCode.io
  • Media Kit

  • Analytics
  • AppSec
  • CISO
  • Cloud
  • DevOps
  • GRC
  • Identity
  • Incident Response
  • IoT / ICS
  • Threats / Breaches
  • More
    • Blockchain / Digital Currencies
    • Careers
    • Cyberlaw
    • Mobile
    • Social Engineering
  • Humor
Data Security Incident Response SBN News Security Bloggers Network 

Home » Cybersecurity » Data Security » Humana Informs Customers of Third-Party Security Incident

Humana Informs Customers of Third-Party Security Incident

by David Bisson on January 9, 2019

Humana has notified customers of a third-party security incident that might have exposed some of their personal information.

According to a breach notification letter obtained by DataBreaches.net, the for-profit American health insurance company learned on 25 October 2018 that bad actors had gained access to the system credentials of some employees at Bankers Life, one of Humana’s business partners. Those individuals then used those credentials to enter secure Bankers Life websites. There, they might have stolen the personal data of individuals who had applied for a Humana health insurance policy through those sites.

Bankers Life first learned of this incident on 7 August 2018. With the help of an external forensics investigator, the primary subsidiary of CNO Financial Group, Inc. determined that the unauthorized parties had accessed some of its employees’ credentials between 30 May 2018 and 13 September 2018. During that time, those bad actors might have acquired customers’ names, addresses, dates of birth, limited health insurance information and the last four digits of their Social Security Numbers.

Bankers Life’s investigation revealed that the incident didn’t expose the full Social Security Numbers, driver’s license numbers, financial information or sensitive medical data of most affected customers.

Following its discovery of the potential data breach, Bankers Life sent notification letters to 566,217 customers in which it offered them one year of free identity repair and credit monitoring services. It also urged them to monitor their credit reports and banking accounts for suspicious activity.

In its breach notification letter, Humana took a moment to inform customers of their options:

We want you to know that at Humana we take seriously our responsibility to ensure the security of your information. We regret any concern this incident might have caused. You have privacy rights under a Federal law that protects your health (Read more...)

*** This is a Security Bloggers Network syndicated blog from The State of Security authored by David Bisson. Read the original post at: https://www.tripwire.com/state-of-security/security-data-protection/humana-informs-customers-of-third-party-security-incident/

January 9, 2019January 9, 2019 David Bisson Humana, insurance, IT Security and Data Protection, Latest Security News, Security Incident
  • ← “Make No Mistake, American Companies Are Squarely in the Cross-Hairs of Well-Financed Nation-State Actors,” U.S. Counter-Spy Center Says
  • 85 Android Adware Apps Downloaded 9 Million Times →

TechStrong TV – Live Streaming

TechStrong TV - All Episodes

The Adventures of Microservice - Latest Episode

Risk Mitigation

Subscribe to our Newsletters

Get breaking news, free eBooks and upcoming events delivered to your inbox.
  • View Security Boulevard Privacy Policy

Most Read on the Boulevard

The Adventures of Microservice – Risk Mitigation!
Is Your Corporate Access Data for Sale on the Dark Web?
How to Forensically Examine Phishing Emails
Zoom’s New Model is Making Heads Hurt
Is Your Company Ready for SOAR?
Security Compliance Reports with Scan
Encryption = Privacy ≠ Security
Cyber Security Roundup for June 2020
Researcher Reports Zero-Day ‘Sign in with Apple’ Bug that Could Allow Full Account Takeover
The Cybersecurity Implications of 5G Technology

Upcoming Webinars

Wed 17

Threat-Informed Defense: Transforming the Security Organization As We Know It

June 17 @ 3:00 pm - 4:00 pm

More Webinars

Download Free eBook

Identifying Web Attack Indicators

Recent Security Boulevard Chats

  • Cloud, DevSecOps and Network Security, All Together?
  • Security-as-Code with Tim Jefferson, Barracuda Networks
  • ASRTM with Rohit Sethi, Security Compass
  • Deception: Art or Science, Ofer Israeli, Illusive Networks
  • Tips to Secure IoT and Connected Systems w/ DigiCert

Industry Spotlight

Automation: Helping Speed Vulnerability Response
Cybersecurity Incident Response Industry Spotlight Security Boulevard (Original) 

Automation: Helping Speed Vulnerability Response

June 4, 2020 Barbara Kay | 28 minutes ago 0
Challenges of a New CISO: The First Year
CISO Suite Cybersecurity Industry Spotlight Security Boulevard (Original) 

Challenges of a New CISO: The First Year

June 3, 2020 Jason Hicks | Yesterday 0
Is Your Company Ready for SOAR?
Cybersecurity Data Security Industry Spotlight Security Boulevard (Original) 

Is Your Company Ready for SOAR?

June 2, 2020 Chetan Mundhada | 2 days ago 0

Top Stories

Zoom’s New Model is Making Heads Hurt
Application Security Cloud Security Cybersecurity Data Security Featured Governance, Risk & Compliance News Security Boulevard (Original) Spotlight 

Zoom’s New Model is Making Heads Hurt

June 1, 2020 Richi Jennings | 2 days ago 0
NSA: Russia Hacking U.S. Firms, via Old Exim Flaw
Analytics & Intelligence Cybersecurity Featured Identity & Access Network Security News Security Boulevard (Original) Spotlight Threat Intelligence Threats & Breaches Vulnerabilities 

NSA: Russia Hacking U.S. Firms, via Old Exim Flaw

May 29, 2020 Richi Jennings | May 29 0
Is eBay Port Scanning Your PC? (Probably)
Analytics & Intelligence Cyberlaw Cybersecurity Endpoint Featured Identity & Access Network Security News Security Boulevard (Original) Spotlight 

Is eBay Port Scanning Your PC? (Probably)

May 26, 2020 Richi Jennings | May 26 0

Security Humor

via  the comic delivery system monikered  Randall Munroe  resident at  XKCD !

XKCD ‘Carcinization’

Join the Community

  • Add your blog to Security Bloggers Network
  • Write for Security Boulevard
  • Bloggers Meetup and Awards
  • Ask a Question
  • Email: info@securityboulevard.com

Useful Links

  • About
  • Media Kit
  • Sponsors Info
  • Copyright
  • TOS
  • Privacy Policy
  • DMCA Compliance Statement

Other Mediaops Sites

  • Container Journal
  • DevOps.com
  • DevOps Connect
  • DevOps Institute
Copyright © 2020 MediaOps Inc. All rights reserved.
Our website uses cookies. By continuing to browse the website you are agreeing to our use of cookies. For more information on how we use cookies and how you can disable them, please read our Privacy Policy.