House lawmakers might have had some of their personal data compromised in the CareFirst BlueCross BlueShield data breach earlier this week.
An email sent to lawmakers and reported on by POLITICO, told House administration officials that hackers might have accessed “limited personal information for House employees.” The breach only impacted members and staffers enrolled in the Federal Employees Health Benefits Program CareFirst Health Maintenance Organization and the District of Columbia Health Link CareFirst.
Hackers had access to members’ full names, dates of birth, their username and subscriber identification number, the memo noted. Only accounts created before June 2014 were impacted.
Username passwords are kept in a separate encrypted database, so they were not accessed.
“Without the password, the attackers could not reach underlying information including your Social Security number, medical information, claims information, credit card, banking or financial information,” the memo stated.