AZ Blue reports Data Breach through a third party vendor compromise

Blue Cross Blue Shield of Arizona (BCBS of Arizona), known as AZ Blue - a federation of independently operated health insurance companies - reported a data breach through of its vendors, TMG Health. The breach had direct implications for the customer data held by AZ Blue.

The breach incident enabled an unauthorized party to gain access to sensitive information concerning consumers.

On June 21, 2023, TMG Health found itself targeted by a cyberattack. In response, TMG Health moved to secure its systems and initiated an investigation into the incident. The investigation concluded that customer data was impacted, with compromised information varies depending on the individual but can includepersonal details such as

• names,
• member IDs,
• addresses,
• email addresses,
• phone numbers,
• dates of birth,
• Social Security Numbers,
• banking information.

No details are available about the number of affected individuals.

By August 17, 2023, BCBS of Arizona has dispatched data breach letters to all individuals whose data had been compromised in the recent security incident. These letters are intended to provide the affected victims with a comprehensive list of the specific information pertaining to them that had been compromised.