Aetna is notifying 1,051 Coventry members in Pennsylvania that an email account for a vendor of the health insurer was hacked earlier this year, where names, identification numbers, authorization determination and other information was stored.
The account was used by an employee of Aetna vendor Magellan/National Imaging Associates of Avon, Conn. There was no evidence the hacker accessed any emails. Moreover, there is no evidence of fraud or misuse of personal information because of the security compromise, according to Aetna, a CVS Health company.
Magellen/NIA notified Hartford, Conn.-based Aetna the breach was caused by phishing attacks, which happened approximately May through July. Aetna conducted a cybersecurity forensics review, which identified the cause of the incident, and carried out remediation steps.
Source: Pittsburgh Post-Gazette