Medicare Data Breach Impacts Almost 1 Million Subscribers
Following the Medicare data breach, you can continue to use your existing Medicare card; beneficiaries with compromised Medicare Beneficiary Identifiers will be sent a new card with a new number.
You are now subscribed
Your newsletter sign-up was successful
Want to add more newsletters?
Delivered daily
Kiplinger Today
Profit and prosper with the best of Kiplinger's advice on investing, taxes, retirement, personal finance and much more delivered daily. Smart money moves start here.
Sent five days a week
Kiplinger A Step Ahead
Get practical help to make better financial decisions in your everyday life, from spending to savings on top deals.
Delivered daily
Kiplinger Closing Bell
Get today's biggest financial and investing headlines delivered to your inbox every day the U.S. stock market is open.
Sent twice a week
Kiplinger Adviser Intel
Financial pros across the country share best practices and fresh tactics to preserve and grow your wealth.
Delivered weekly
Kiplinger Tax Tips
Trim your federal and state tax bills with practical tax-planning and tax-cutting strategies.
Sent twice a week
Kiplinger Retirement Tips
Your twice-a-week guide to planning and enjoying a financially secure and richly rewarding retirement
Sent bimonthly.
Kiplinger Adviser Angle
Insights for advisers, wealth managers and other financial professionals.
Sent twice a week
Kiplinger Investing Weekly
Your twice-a-week roundup of promising stocks, funds, companies and industries you should consider, ones you should avoid, and why.
Sent weekly for six weeks
Kiplinger Invest for Retirement
Your step-by-step six-part series on how to invest for retirement, from devising a successful strategy to exactly which investments to choose.
The personal information of more than 900,000 Medicare beneficiaries was exposed during a data breach that occurred between May 27 and May 31, 2023. Information was stolen exploiting a "vulnerability" in the MOVEit software program used by Medicare contractor Wisconsin Physicians Service Insurance Corporation (WPS) to transfer files during the Medicare claims process, according to the Centers for Medicare & Medicaid Services (CMS), the federal agency that manages the Medicare program.
Notification is being sent by CMS and WPS to the almost 947,000 individuals affected that some of their protected health information (PHI) and personally identifiable information (PII) was compromised in the May 2023 security breach.
2023 saw a record breaking number of cyberattacks, with 2,365 breaches and 343,338,964 victims, according to the 2023 ITRC Annual Data Breach report from the Identity Theft Resource Center. Healthcare companies faced the most cyberattacks industry wide with 809 compromises, and the financial sector came in a close second with 744 compromises, according to idtheftcenter.org. Healthcare led all industries in terms of the number of reported compromises in each of the past five (5) years.
From just $107.88 $24.99 for Kiplinger Personal Finance
Become a smarter, better informed investor. Subscribe from just $107.88 $24.99, plus get up to 4 Special Issues
Sign up for Kiplinger’s Free Newsletters
Profit and prosper with the best of expert advice on investing, taxes, retirement, personal finance and more - straight to your e-mail.
Profit and prosper with the best of expert advice - straight to your e-mail.
How the breach occurred
WPS provides administrative services to the CMS including the handling of Medicare Part A/B claims. The security breach involved the exploitation of a vulnerability in Progress Software’s MOVEit software, which was used by WPS for transferring files in connection with the services provided to the CMS.
Beginning on May 27, 2023, CL0P Ransomware Gang, also known as TA505, began exploiting a previously unknown vulnerability in Progress Software's managed file transfer (MFT) solution known as MOVEit Transfer. Internet-facing MOVEit Transfer web applications were infected with a web shell named LEMURLOOT, which was then used to steal data from underlying MOVEit Transfer databases, according to the Cybersecurity and Infrastructure Security Agency (CISA).
What information was involved?
- Name
- Social Security Number or Individual Taxpayer Identification Number
- Date of Birth
- Mailing Address
- Gender
- Hospital Account Number
- Dates of Service
- Medicare Beneficiary Identifier (MBI) and/or Health Insurance Claim Number
What is a Medicare Beneficiary Identifier (MBI)?
The Medicare Access and CHIP Reauthorization Act (MACRA) of 2015, required the removal of Social Security numbers from Medicare cards. By April 2019, Medicare Beneficiary Identifiers (MBIs) replaced Social Security numbers on Medicare cards.
On a Medicare card, an MBI will appear similar to this: 1EG4-TE5-MK73. The second, fifth, eighth, and ninth characters are always letters while the first, fourth, seventh, tenth, and eleventh characters are always numbers. There isn't a standard for the third or sixth characters.
The CMS press release said they "are not aware of any reports of identity fraud or improper use of your information as a direct result of this incident." They do advise that you can continue to use your current card to receive services. If CMS determines your MBI was compromised as a result of the breach, a new Medicare card with a new new number will be issued to you. CMS will mail the new card to your address in the coming weeks.
After you get your new card, CMS says you should:
- Follow the instructions in the letter that comes with your new card
- Destroy your old Medicare card
- Inform your providers that you have a new Medicare number
What can you do if you were impacted by the data breach?
Yogi Berra sums up how I feel about giving tips to protect your data — "It's like déjà vu all over again." I hope these tips will now become a habit instead of a defensive measure. Your information is valuable and there is no shortage of bad actors scheming to steal it.
Here are five tips for protecting your identity and data:
- Sign up for 24/7 credit monitoring and activate two-factor authentication
- Never respond to unsolicited requests for information
- Review credit card, bank accounts and loans on a regular basis
- Place a free fraud alert on your credit file. A fraud alert tells creditors to contact you before they open any new accounts or change your existing accounts.
- Freeze your three primary credit reports. In this context, "freezing" means that you prohibit your credit reports from being accessed by most third parties. In return for a fee you get a PIN from the credit bureaus. This PIN acts as an additional key and it must be given in order for your credit reports to be accessed and used to open accounts or obtain loans
Bottom line
The Medicare data breach comes on the heels of the NDP and Change Healthcare breaches. It should prompt everyone to be vigilant about checking bank accounts, loan and credit card accounts and credit reports regularly. These breaches are a fact of life and we have to take regular, affirmative steps to guard against them. It is no longer enough to make inquiries after something happens. A pro-active stance is the best offense and defense when it comes to cybersecurity.
Related Content
-
How to Open Your Kid's $1,000 Trump AccountTax Breaks Filing income taxes in 2026? You won't want to miss Form 4547 to claim a $1,000 Trump Account for your child.
-
In Arkansas and Illinois, Groceries Just Got Cheaper, But Not By MuchFood Prices Arkansas and Illinois are the most recent states to repeal sales tax on groceries. Will it really help shoppers with their food bills?
-
How to Budget as a Couple Without FightingThese tips will help you get on the same page to achieve your financial goals, with minimal drama.
-
These Thoughtful Retirement Planning Steps Help Protect the Life You Want in RetirementThis kind of planning focuses on the intentional design of your estate, philanthropy and long-term care protection.
-
Fixed Indexed Annuities and Bonds: The Perfect Match as Interest Rates Inch Lower?The prospect of more interest rate cuts has investors wondering how to enhance the bond portion of their portfolio. A fixed indexed annuity could be the answer.
-
'Fee-Only' and 'Fiduciary' Are Not the Same: A Financial Pro Sets the Record StraightThe terms fiduciary and fee-only are not interchangeable. Knowing the difference ensures investors get the advice and the consumer protection they need.
-
Dad Is a 68-Year-Old Widower, Forced to Retire. He's Wonderful, but May Need More Time Than I Can Give.My dad is fun and handsome, but reeling after so much loss. Relationship experts give their advice.
-
I'm a Financial Adviser: This Is Why a Second (Gray) Divorce Could Cost You Big-TimeDivorce isn't any easier the second time, especially if you've remarried later in life. Rushing to settle without proper advice can have serious consequences.
-
A Matter of Trustees: Is Your Spouse the Best Person to Manage the Kids' Trusts?Naming your spouse as trustee can provide invaluable familial insight and continuity, but you should carefully weigh those benefits against potential risks.
-
Hosting a Family Reunion? 10 Essentials for a Lasting LegacyRekindle old friendships, pass down traditions and have a ball at your family reunion. We answer 10 common planning questions.
-
Should I sell my old silverware and gold jewelry now that prices are so high? Or should I hand them down?My family silver and gold have sentimental value, but I hardly use them. Should I sell? We asked a professional metals dealer and investment adviser to weigh in.
