SUBJECT:

Anthem Data Breach

As reported in the February 4, 2015 news, Anthem, Inc. disclosed that the health insurer was the target of a very sophisticated external cyber attack and that data for its 80 million members was accessed. The University of California has been in communication with Anthem and has been informed that the data breach may potentially include information about UC faculty, staff, students and retirees, as well as their dependents.

Once the attack was discovered, Anthem immediately made every effort to close the security vulnerability, contacted the Federal Bureau of Investigation and began fully cooperating with their investigation. According to Anthem, the information accessed through the cyber attack includes member names, member health identification numbers/Social Security numbers (Anthem does not possess Social Security numbers for UC students), dates of birth, street addresses, e-mail addresses, telephone numbers, and employment information such as the UC campus or medical center location.

Currently, Anthem is the network provider and claims administrator for UC SHIP, the University's student health insurance plan, at UC San Francisco, Hastings College of the Law, UC Santa Cruz, UC Irvine (graduate students only), UC Merced, UC Los Angeles and UC San Diego. UC Irvine undergraduates and UC Davis students have vision insurance only through Anthem. Anthem provided services for UC SHIP at all campuses from August 2011 through July 2013. In addition, from 2003 until January 1, 2014, Anthem provided health insurance to certain UC employees and retirees and their dependents.

Anthem's investigation to date indicates that there is no evidence that banking, financial or medical information, such as claims, test results, or diagnostic codes were targeted or compromised. Anthem will enroll members affected by the cyber attack in identity repair services. In addition, impacted members will be provided with information on how to enroll in free credit monitoring.

Also be aware that phishing emails have been sent employees attempting to disguise themselves as Anthem. Anthem will not be contacting any current or former members by email. Anthem has created a dedicated website where current and former Anthem members can find information. The website can be accessed at: www.AnthemFacts.com . A list of Frequently Asked Questions is also posted at this site. Members may also call 1-877-263-7995 for the most updated information.

Catherine M. Ledford Interim, Assistant Vice Chancellor- Human Resources