Blue Cross and Blue Shield of Kansas City (Blue KC) recently began notifying 2,546 of its members that a former employee may have stolen their financial information.
The breach, which was discovered on February 26, 2014, was limited to those members who had spoken with the employee in question regarding payment of their premiums.
"This situation did not involve a compromise of Blue KC's computer systems, payments made online to Blue KC, or payments made to other customer service representatives," Blue KC director of corporate compliance Norma McKelvy explained in the notification letter [PDF].
The information that may have been stolen includes the affected members' names, addresses, and credit card or bank account information.
"We want to apologize for this incident and assure you we continue to review this situation to further strengthen our safeguards and measures to prevent any future incidents," McKelvy wrote. "This situation has been reported to local law enforcement and will be reported to the Department of Health and Human Services."
All those affected are being offered one year of identity protection services through AllClear PRO.
BlueKC members with questions are advised to contact (800) 792-2349.
Photo courtesy of Shutterstock.