Key Highlights
- Conduent discovered a cyber incident impacting its network from October 21, 2024, to January 13, 2025.
- Data containing personal information of Premera Blue Cross members was accessed during this period.
- Premera Blue Cross is offering complimentary credit monitoring and identity protection services for two years to affected individuals.
- The incident did not involve Premera’s IT systems, but the company remains committed to member privacy.
Data Security Incident at Conduent Affects Premera Blue Cross Members
Conduent Business Services, LLC, a third-party service provider that offers various back-office support services, including printing and document processing, has disclosed a data security incident affecting some of its clients. The company recently notified Premera Blue Cross, a leading health plan in the Pacific Northwest, about a cyber incident that occurred from October 21, 2024, to January 13, 2025.
The affected information includes personal data such as names, Social Security numbers, dates of birth, treatment descriptions or codes, treatment costs, and member identification numbers. Premera Blue Cross has assured its members that there is no evidence of any attempted misuse of the compromised data at this time.
Response from Conduent
Upon discovering the incident, Conduent immediately secured its networks and initiated an investigation with third-party forensic experts. The company promptly notified law enforcement authorities and restored its systems to normal operations. Letters are being mailed to individuals whose information was compromised, offering them complimentary credit monitoring and identity protection services for two years.
“We sincerely regret any concern this incident may cause our members,” stated a spokesperson from Premera Blue Cross. “Our commitment is to protect the privacy of our members’ personal information and provide support where needed.”
About Conduent Business Services
Conduent Business Services provides various services to health plans, including printing/mailroom services, document processing services, payment integrity services, government benefit services, and other back-office support. The company serves numerous organizations, including Premera Blue Cross.
Premera Blue Cross, a not-for-profit, independent licensee of the Blue Cross Blue Shield Association based in Mountlake Terrace, Washington, serves over 2.5 million people across the Pacific Northwest. For more information about the incident and services offered by both companies, visit their respective websites: Conduent (https://www.conduent.com/notice-2912609/) and Premera Blue Cross (www.premera.com).
Industry Context
The incident highlights the increasing risks associated with data security in third-party service providers. With more organizations outsourcing critical operations, the potential for data breaches remains a significant concern. This case underscores the importance of robust cybersecurity measures and regular audits to prevent such incidents.
“While this specific incident did not involve Premera’s IT systems,” said an industry analyst, “it serves as a reminder that companies must remain vigilant in protecting their partners’ and clients’ data.”
