The Truth is Powerful
Highmark Health, WellDyneRx, Others Report Healthcare Data Breaches
By Jill McKeon Highmark Health Reports Fourth-Party Vendor Breach
Pittsburgh, Pennsylvania-based Highmark Health, a large integrated healthcare delivery and financing system, reported a fourth-party vendor breach that impacted certain Highmark files.
The breach originated between August and October 2021 at Quantum Group, a printing and mailing services vendor. Quantum Group’s services are used by WebbMason, a company that Highmark Health had engaged for marketing services.
Highmark Health’s breach notice explained that WebbMason received notification of the breach in December 2021 and learned that a bad actor had accessed Quantum Group’s network without authorization and acquired certain files.
In January 2022, WebbMason confirmed that the bad actor had accessed data “provided to Quantum in 2017 as part of the services performed by WebbMason on behalf of Highmark.”
The files related to provider mailings regarding prescription drug changes, including names, birth dates, Highmark member IDs, and prescription information.“WebbMason and Highmark have taken steps to notify all impacted individuals and offer those individuals credit monitoring,” the notice stated.“Additionally, Highmark will be providing impacted members with enhanced fraud monitoring on their Highmark account.” Carolina Behavioral Health Alliance Ransomware Attack Impacts 131K Carolina Behavioral Health Alliance (CBHA) reported a breach to the Office for Civil Rights (OCR) that […]