MAXICARE DATA BREACH, 13,000 MEMBERS AFFECTED

The well-known health insurance company reported that a data breach occurred on Sunday (Photo courtesy of Rappler)

Authorities are investigating the data breach that occurred at health insurance provider Maxicare Healthcare Corporation. According to the National Privacy Commission (NPC), the company reported the data breach to them at noon this week.

With 18 Maxicare primary care clinics, one wellness rehabilitation facility, and two Maxicare wings at major hospitals, Maxicare boasts 1.8 million members.

It stated to be connected to over 1,300 hospitals and clinics, 700 dental clinics, 140 rehabilitation, dialysis, and eye centers, and more than 20,000 associated doctors and specialists.

The Department of Information and Communications Technology (DICT) said the leak started when a threat actor found log in credentials on the internet, using it to enter Maxicare's system and download the available information. The agency is currently contacting the NPC to help the company. 

In a statement released by Maxicare, it confirmed that 13,000 of their members are affected by the incident. But the company assured that no sensitive data was compromised except the information used in the booking request.

According to the report, the compromised data revealed comprehensive personal and booking details, including email addresses, Go Rewards codes, units or vendors, last names, middle names, and first names.

The leak also contained member-specific data, including complete names, business identities, 16-digit Maxicare card numbers, corporate codes, account types, date of birth, sex, mobile numbers, email addresses, and VIP status.

The data breach cause raising concerns about the personal records of nearly two million members of the well-known health maintenance organization (HMO).

Source: Philippine Daily Inquirer

Be part of ImHenyo community!

Get featured by sharing your stories, news, and comments

Email us at [email protected]