US Health Insurer Premera Blue Cross Accused of Destroying Evidence in Data Breach Lawsuit

Catalin Cimpanu, reporting for ZDNet: The plaintiffs of a class-action lawsuit against health insurance provider Premera Blue Cross are accusing the organization of "willfully destroying" evidence that was crucial for establishing accurate details in a security breach incident. In court documents filed last week obtained by ZDNet, plaintiffs claim that Premera intentionally destroyed a computer that was in a key position to reveal more details about the breach, but also software logs from a security product that may have shown evidence of data exfiltration. Establishing if hackers stole data from Premera's systems is crucial for the legal case. Breach victims part of the class-action will be to claim a right for monetary compensation, while Premera may argue that since hackers did not steal data from its servers, there is no tangible harm to victims. The class-action lawsuit is in connection to a March 2015 announcement. Back then, Premera announced that hackers breached its systems and gained access to computers holding the personal and medical data of over 11 million Americans.

Of course

Insurance companies are leaches on society. Are you really surprised they'd engage in such behavior?

Re: Of course

Sounds like something Trump and his cronies would do, all the while screaming FAKE NEWS to keep the masses distracted. SAD!

Re: Of course

Must be Paul Combettaâ(TM)s new job

Re: Of course

Doesnâ(TM)t that make them the guilty party

Re:Of course

[harvey+the+nerd]

Insurance companies are major uniparty sponsors unaccountable to the public, a major source of problems from the Medical-Industrial-Congressional complex that hurts and bankrupts many Americians.

victims' not victims

Ok, I get it. The article says, "Breach victims part ...". I thought the word "victims" was a noun, and "part" was a verb, as in the victims were parting from something.

The word [victims] here should be [victims'] (with an apostrophe after the word, meaning possessive). So [Breach victims] describes the noun "part". So the article means "the part of the lawsuit that belongs to the breach victims".

Re: victims' not victims

What are you in about? Everyone else understood what was said, but you for some odd reason have to make changes to it? Are you stupid or something?

Re: victims' not victims

wow u is autistic sumbitch, ya?

Re:victims' not victims

[WhiteDragon]

Ok, I get it. The article says, "Breach victims part ...". I thought the word "victims" was a noun, and "part" was a verb, as in the victims were parting from something.

The word [victims] here should be [victims'] (with an apostrophe after the word, meaning possessive). So [Breach victims] describes the noun "part". So the article means "the part of the lawsuit that belongs to the breach victims".

It should be "... victims [who are] part of ...".

Re: victims' not victims

For an amateur, every car is a car. For an expert, each car is a unique machine. Obviously a person that you responded to is an expert in English language. You, of course, are not.

Premera in which state?

Here in WA, my employer used them and after a little over two years, they hadn't paid out a single claim. My company sued them, and somehow they lost all of the claims. The judge said even though we had copies of claims FAXed to them and sign-offs from employees of doctors that FAXed the claims, we couldn't prove we had ever filed a claim. Really? Over two hundred employees for over two years never filed a claim for themselves or the dependents we were paying coverage for?

Re:Premera in which state?

[greenwow]

Same here. Premera paid no claims for years so we finally switched to UnitedHealthcare. United is much better since they paid the claim of one of our three employees that gave birth. 1/3 sounds bad, but it's so much better than nothing.

Re:Premera in which state?

United is garbage. We switched to them on Jan 1, and their web page shows this message for everyone that has filed a claim:

"You have no claims to show using the selected criteria."

We can't get them to act on any claims since their support people claim they don't see any.

Re:Premera in which state?

Someone please tell me again how bad socialised healthcare is.

Re:Premera in which state?

But at least Premera will usually claim doctors didn't answer to more requests for info while United will just lie and claim they never received a claim. You just from the frying pan into the fire.

Re: Premera in which state?

Not paying claims is just good business. It makes them smart. How else are they going to be profitable for upper management and the shareholders?

Re:Premera in which state?

[youngone]

1/3 sounds bad, but it's so much better than nothing.

That must be an awful way to live. You have my sympathy.

Re:Premera in which state?

[youngone]

It's really is awful.
My wife broke her ankle last year, and was seen immediately at the A&E by a series of well trained competent doctors and nurses.
She was then admitted and stayed in hospital for the next three weeks and had an operation.
When she did come home she had a home help person come to clean the house, and the district nurse checked on her for 6 weeks or so.
But it get worse! So much worse!
When she decided some (extra) physiotherapy was needed, I had to pay nearly $15 per session!
I know !!

Re: Premera in which state?

[groktrev]

Premera, like many Blues, is not-for-profit, but premiums pay for everything, not just claims. I sincerely hope Pemera did all the right things here. When one Blue breaches the trust of its members/subscribers, all BCBSA licensees appears culpable.

Re:Premera in which state?

ZOMG, I am shocked that civilisation did not end right there and then.

Re: Premera in which state?

I'm so glad that in AMERICA we can go to the doctor for the smallest thing, and come home with an antibiotic resistant bacteria that will ensure we come back to the hospital within the week! Once we have returned, we can get some out of network charges for ibuprofen for 100x the price you would pay at the drug store. No matter how much you ask, they will never ruin the surprise of your final bill. You then go home and get mailed a $100k bill of ambiguous charges you can't dispute, because maybe that time the doctor winked at you it was really a pelvis exam. Thankfully you now have an incentive to get your ass to work every day so you can finally get out of the debt you deserved to be in your whole life.

Re: Premera in which state?

[b0s0z0ku]

Meanwhile, I hope that all private insurance companies get caught with their pants down, and ideally ruined. If enough of them hang, maybe support for a public option or Medicare-for-all will increase. Kick 'em to the curb.

Re: Premera in which state?

[originalGMC]

Eh, I've worked for them as a very high level contractor before - they SAY they're not for profit, but the way they ACT is much different. The blues all have extraordinary salaries for their higher ups. Per https://khn.org/news/blue-shie... in ...

2015 compensation included a base salary of $1.07 million and incentive plan payouts of $2.45 million.

A better news story would be to illuminate what the "incentive plan" is... or maybe to expose just how much $ they spend on lobbying.

Re: Premera in which state?

[sodul]

Thatâ(TM)s why Iâ(TM)m sticking with Kaiser Permanente. Yes I have heard bad stuff about them but bad surgeries do not seem to happen more frequently than at other places. The thing that never happens with them is a giant magical bill out of nowhere. When our son was born he was premature and in breach position. We had to do an unplanned c-section and we stayed 4 days in the hospital after the surgery. The total bill was $750, in the middle of Silicon Valley. We then had daily follow ups on how to feed a premature baby, free, including the seringues and tubing. Sometimes, rarely, they charge us more than we are supposed to for a visit and then they mail us a check without even us asking or mentioned ning anything. So Iâ(TM)m actually less worried about medical malpractice there, since the doctors have no incentives to do useless exams or surgery, they are less stressed because they donâ(TM)t have to deal with external insurance paperwork, and I never have to worry about a magical high bill in the mail.

Re:Premera in which state?

[terrycarlino]

For anyone who believes the U.S. government is capable of doing healthcare I just recommend they look at the VA. The VA is what everyone's healthcare would look like if there was one payer in the U.S.

Re: Premera in which state?

The VA has the highest satisfaction of any million plus member health care organization in the US.

You could hear new horror story every day about the VA, and it would mean only 2000000/365=~2,000,000/400~=5000^-1=0.02% horrific complaints.

They have a 97% satisfaction rate which means you actually get about four complaints a day, in a system that charges zero dollars for any service, and can not cancel the policy of any member.

The VA has its problems, as any large irgs does, but the complaints about it ate driven by those that want to privative it, jack up he prices and soak the taxpayer for the the extra yachts. Do that and Marvel will spend a billion dollars on Howard the Duck and call it a health care treatment for quacksphobics.

Re:Premera in Washington State

[aisnota]

1.) Ok, you can get call records from the phone company with SMDR details (difficulty high)
2.) Hunt down ex-employees that know details of your employees getting shafted
3.) Get class action status of Bad Faith insurance
4.) Pierce corporate veil and put liens on CEO of the times personal property or trusts

Hard to believe zero claim payouts, as even one or a handful of payouts would be enough for plausible deniability so these are imbeciles if corporate America !

Cyber security lawsuit is more tenuous than bad faith of insureds paying in.

Subpoena Crowdstrike

... the brain trust that mysteriously determined the Premera breach was nation-state after the FBI concluded it was organized crime- which would have made Premera liable. I'm *sure* CS had the so-called evidence to support that, including where the exfiltrated data went.
CS is a garbage outfit, don't trust a single thing they say. These geniuses also famously called the DNC hack "nation state" before Guccifer 2.0 was arrested, and declared GA's election system was hacked by Russia in 2016... about a day before it was revealed that it was a scheduled DHS pentest. You can still find the original reports on the wayback machine.
And don't bring politics into it, you'll embarrass yourself. Everyone involved with Premera, Crowdstrike and the coverup were all huge Dem donors.

Re:Subpoena Crowdstrike

You're the first poster who brought political parties up

Feeling bit defensive about the GOP's relentless attacks on anything that could actually reform the US healthcare system and reduce the exploitation of people for profit, are we?

Re: Subpoena Crowdstrike

Not really... just read the first reply. No need for partisan politics when the story of the day is rank corruption and bad forensics, plain and simple.

Re:Premera in Washington State

I used to work for a Blue Cross Blue Shield in another state, and can vouch for the shitty computer security there too. When the CISO started bringing the issues to the attention of the CIO, I have no idea why they had him report to her, she tried to force him to lie to the board of directors about the state of things. When he refused, she pit him, a CISO, under the management of a "senior manager" that would tell the board what she wanted them told. The CISO left when that happened and now the "senior manager" is now the CISO with no computer security experience.

Destruction of evidence

[AJWM]

If it can be shown that evidence was deliberately destroyed (and yeah, that's the hard part), then there's generally a legal presumption that the evidence showed the worst possible interpretation of the case for the party which destroyed (else why destroy it?).

Of course when the evidence that they destroyed evidence has also been destroyed, and the evidence of that has been destroyed... well, you get the idea.

Re:Destruction of evidence

And there's a difference between "wipe the server because malware" and "wipe the server because evidence". Same action, different intent.

Re:Destruction of evidence

Wipe it? You mean like with a cloth?

another mistake, another anon

That's not the only odd part. Even after reworking that part, there's this one:

[The plaintiffs] will be to claim a right for monetary compensation

Will be insert verb hereing to claim? The goal of the plaintiffs will be to claim?

captcha: abuses (of language)

As somebody who has worked there in tech..

I can say that I firmly believe that they would actively delete records like this; They were that sort of people in my opinion and from what I actually saw every day that actively violated HIPPA and other requirements, I'm not surprised by this at all.

I believe it

[Jerry]

For nearly ten years before I retired BCBS was the insurance vendor for where I worked.
After I retired I switched to their supplement plan. Four years later, even though my wife and I had made few claims, which they were very slow paying, if at all, we got a notice saying that our "group" was being canceled. So we contracted with another supplement vendor. Three months later BCBS sent us an ad telling about a new policy, which was exactly like the policy they dropped, except that it cost about 50% more. We have received several ads from them since but all are immediately sent to file 13.

HIPAA

Fine them for 11,000,000 HIPAA breaches, each of which is valued at a minimum of $100 and a maximum of $50,000. Also charge the people who ordered the destruction with obstruction of justice.

Re:HIPAA

[b0s0z0ku]

Fine them something they can't pay, say the max of $50,000 per case. Then nationalize them, or put them under state control after the fines bankrupt them. Make them a test case for a public option.

People should go to jail

people should go to jail in these cases

Timing is everything.

[CaptainDork]

Timeline:

- 2014, the OPM warning
- 2015, Premera announces breach
- 2015, Lawsuits filed
- 2016, One computer destroyed for end-of-life
- 2018, Plaintiffs ask for all computers *** This motion makes all computers "evidence"
- 2018, Premera gives all but destroyed

I can destroy my desktop today. It can be crucial to a lawsuit tomorrow. Today it is not evidence. It isn't evidence tomorrow, either, because I destroyed it today.

I am not compelled to preserve my desktop until served notice.

Timing is everything.

Re:Timing is everything.

[Tyr07]

You wish it worked that way. You see, the computer wasn't destroyed until law suits were filld. E.G they had warning that computers might be requested, so they immediately destroyed it before it happened.

I know, you think ahaha I was clever so I get away free. No, it doesn't work that way. If it can be linked that the computer destroyed would of had evidence relating to the breach and was destroyed post breach, especially after lawsuits were filled, it won't work.

They'll still have to prove it, but that's like a criminal shooting someone, then destroying the gun before it's requested in court. You still get hit with destruction of evidence.

Re:Timing is everything.

[CaptainDork]

You wish it worked that way. You see, the computer wasn't destroyed until law suits were filld [sic].

Hold up right there.

If I receive notice of a lawsuit today, does that mean I can't replace my refrigerator?

The original lawsuit, like most at that stage, was vague in scope and did not include a motion to preserve the destroyed computer.

At no time prior to a motion to turn over all computers in 2018 were the computers sequestered by the court.

Had that been the case, we'd be reading about the criminal charges filed for destroying evidence.

Timing is everything.

Re:Timing is everything.

[whoever57]

If I receive notice of a lawsuit today, does that mean I can't replace my refrigerator?

If the refrigerator contains or is evidence relevant to the lawsuit, yes, it means exactly that.

Re: Timing is everything.

My refrigerator containers much evidence of many scientific experiments. In a variety of colors.

I'm sure the county health department would intervene if I tried to present the fridge in court.

Re: Timing is everything.

If I receive notice of a lawsuit today, does that mean I can't replace my refrigerator?

It depends on how many chopped up human bodies you managed to cram in it.

Re:Timing is everything.

Breach.
The security officer secures everything surrounding the breach. Expert breach advice is taken. A backup at the very least. Forensic clone of HDD if they are big enough.

Resolution: Unless directions are produced security officer and team are dismissed or
trained. And the security officers manager to be fired - the one who signs off on the security manager at board level for gross negligence.

The computer does not matter: destruction of logs and data is, and the emails concerning such breach. If that's missing. BTW Security should be aware of discovery, evidence and legal matters. A tobacco company had a similar data retention(destruction) policy and it failed. thus a Tobacco sized settlement should be awarded.

Re: Timing is everything.

Illegal activity committed, destroy computer holding evidence of illegal activity. You have now committed obstruction of justice regardless of any lawsuit.

Re: Timing is everything.

[CaptainDork]

Destroying a HD is not illegal.

I destroyed all the hard drives I ever got rid of at work as a promise to my boss that no one could ever recover any data once they left the building.

When a HD, tablet, smart phone, other, here at home fails, it gets smashed with a 15-pound hammer.

Is it possible that someone, someday, could ask for the hard drives or other as part of discovery?

Sure.

My answer would be, "You're too late to the fucking party and you didn't even bring any goddam ice."

If asked why I didn't preserve the hard drives, I'd tell 'em to fuck off.

I can destroy my property all I want unless directed by an authority not to do so.

Timing is everything.

Re:Timing is everything.

[CaptainDork]

You can have your opinions about what people should do, but your thoughts are not supported by case law.

Re: Timing is everything.

[CaptainDork]

Didn't work out well.

After I chopped them up, they did not respond to my efforts to manage them.

Re:Timing is everything.

[CaptainDork]

And, as you admit in your post, I'd have to know that the lawsuit existed and that the fridge was relevant to that lawsuit because the lawsuit defines scope.

Does the presence of a lawsuit mean I can't sell my lawnmower?

Re: Timing is everything.

[whoever57]

Timing is everything.

Yes, but the time after which you can no longer destroy the drives starts earlier than you believe.

Re: Timing is everything.

[CaptainDork]

The legal system is not a matter of faith.

"Evidence," has a definition that that describes often mundane things that become relevant only after a crime has been committed.

It was not criminal to destroy the hard drive because it was not of any interest until 2018, after it had been destroyed for an unrelated reason.

Re: Timing is everything.

Wow, who are you being paid by? lol

Re:Timing is everything.

[Tyr07]

If a crime happened and your fridge was involved and a key piece of evidence, so you willingly destroyed it after a lawsuit was filed, it would show intent to destroy evidence. So no, you can't destroy your fridge.

Your analogy is shit too. Let me use one to prove the point like you are with the same quality. Uh uh if a hand gun killed someone, does it mean a random person who has nothing to do with this at all in china can't use the toliet? It wasn't in the lawsuit originally filled.

If a /key/ computer that would have evidence on it was deliberately destroyed, and was a key point or focus / entry point of the attack, it's a lot difference then daves old office PC in the basement, role, function, and relation to what happened all apply.

Re:Timing is everything.

[CaptainDork]

If a crime happened and your fridge was involved ...

Stop.

You did a two-step:

1.) A crime happened

2.) Fridge

That's not what happened:

1.) A computer was destroyed

2.) A motion for computer was filed

That's why timing is everything.

Re:Timing is everything.

What's a "two-step", Chris? What's with the hyphen?

Re:Timing is everything.

[CaptainDork]

That's right, you're not from Texas.

Re:Timing is everything.

[Tyr07]

Stop.

You know for a fact that this computer had nothing to do with crime and wasn't a center point of attention?
You know it's role in the network security of the company?
No? Yea troll, discussion is over.

I'm confident you know as well as anyone if you are aware that any equipment was used in a crime and contains evidence, requested or not, you will be held for wilful destruction of evidence if it can be proved it was destroyed with that knowledge.

It's like if you have 4 hand guns in your house. A person was killed by a hand gun, and you just happened to destroy one before it was requested you turn them all over for evidence.

You'd still get nailed. People aren't as fucking dumb as you'd like them to believe, excluding even responding to you.

Re:Timing is everything.

[CaptainDork]

Stop.

The law is not based upon speculation prior to establishment of litigation.

Any and all objects in the universe have the property that they could, individually or collectively, be evidence, and yet they are not all, at this point, evidence.

In law, there's an order of operation:

Evidence does not exist before probable cause.

I have a magnifying glass on my desk.

I could choke someone with it.

If I should do that, it would become evidence.

At this writing, I have not choked anyone with it, nor is there probable cause that I will, and the magnifying glass is not evidence.

I can discard the magnifying glass if I like.

From that point forward, if a crime is committed and the cause is attributed (possibly) to a magnifying glass, it is reasonable for someone to file a motion of discovery for my magnifying glass.

If I cannot comply because I discarded the magnifying glass prior to the notification that it might be pertinent to a case, no one's going to worry about it.

To repeat what I've already repeated:

A computer was destroyed for reasons.

A motion filed years later asking for the computer is moot.

Had the computer been destroyed AFTER the motion ... but that's not the timing in this matter and that's everything.

Can that really work?

[ErichTheRed]

I've worked at places that use an insanely short email retention policy to get out of e-discovery in lawsuits. One place had a 30-day retention..anything older than that and, "la la la, we have no record of the email you are attempting to recover." And apparently that works, if you have a written policy stating that you don't keep email or backups for more than X days.

But, couldn't any company just send all their computers to the metal shredder the second a lawsuit is filed using the same argument? Maybe that's how they're planning on hiding how bad their data breach was. Somehow I doubt that though...if there were no rules against destroying evidence, every computer would have a self-destruct circuit in it.

Of course no one knows what actually happened, but this totally reads like some clueless CIO getting pressure from the board and CEO to just make the problem disappear.

Re:Can that really work?

[sjames]

The short retention works for anything that happens BEFORE the lawsuit is filed. The written policy is just a way to show that anything destroyed more than 30 days before the lawsuit was just business as usual, not an attempt to destroy evidence. Once the suit is filed, the destruction must be suspended.

Re:Can that really work?

[TubeSteak]

The spoliation inference is a negative evidentiary inference that a finder of fact can draw from a party's destruction of a document or thing that is relevant to an ongoing or reasonably foreseeable civil or criminal proceeding: the finder of fact can review all evidence uncovered in as strong a light as possible against the spoliator and in favor of the opposing party.

E-mail/document retention policies are not a get out of jail free card.

If the company can "reasonably foreseeable" the documents will be needed, they're obliged to preserved them, lawsuit or not.

At the bare minimum, a judge will tell the jury to interpret destroyed evidence in the worst possible light for the destroyer.

In a worst case scenario, depending on your jurisdiction, destroying evidence will spawn a separate civil lawsuit or a criminal prosecution (fines and jail time).

Destroying evidence means you're stupid or hiding something much worse.

Re:Can that really work?

[shatteredsilicon]

There are compliance regulations in many sectors, including finance (which includes insurance) and medical (which includes medical insurers) that say that everything has to be kept for a number of years. So on the whole in most of the civilised world, this sort of thing absolutely isn't going to fly.

No one's being held accountable.

[bjwest]

Until the entire board of directors and everyone with a C*O in their title goes to prison for shit like this, nothing will change in the corporate world. Pissy little fines that barley make a blip on the bottom line will do nothing, and that's probably all that will happen AGAIN.

Re:No one's being held accountable.

Until the entire board of directors and everyone with a C*O in their title goes to prison for shit like this, nothing will change in the corporate world. Pissy little fines that barley make a blip on the bottom line will do nothing, and that's probably all that will happen AGAIN.

No. As satisfying as that may be, the most effective course of action is to punish the *shareholders*. Something that's not a slap on the wrist, but perhaps forfeiture of say, half their holdings in the company. That way, private industry is left holding the bag on proving who did what, lawsuits and whatnot - and also, not incidentally, keeping everyone's actions in line with the law.

in prison the state pays the doctor with no claim

[Joe_Dragon]

in prison the state pays the doctor with no claim bs.

Some doctors like it same pay + much less paper work.

Of course they did

[Revek]

A corparation can only be trusted to do whatever is in its best interest. Even If there are no psychopaths in its top management. The committee will always choose to do what is best for the company no matter what the law is. Its one of the reasons we need more regulation in this country. Several generations of US citizens have now been convinced that government regulation is bad. They have been convinced of this to preserve the bottom line of companies whose management closely resembles the communist party of Russia. Look at how they elect their leaders and who decides who is on the boards. Doesn't look like democracy in any way.

https://youtu.be/XUeHi47Lovo

(Death Sea)!! !! islamic history bangla dubbing.islamic history bangla video.islamic history bangla language.islamic history books in bangla free download pdf.islamic history books in bangla.islamic history video .bangla.prophet stories.allah, islamic history bangla video download. #banglatechaaak #deathsea Thanks for Watching this video For More Video, Don't forget to subscribe.....