Clover Health says employee accounts accessed in cyber incident
Summarized and contextualized by DistantNews.
At a glance
- Clover Health Investments detected unusual login activity on July 4, later discovering a hacker accessed three employee accounts.
- The accessed accounts belonged to non-managerial employees and may have contained personal and protected health information, but not financial or claims data.
- The company is investigating the incident with cybersecurity experts and law enforcement, believing the unauthorized access has been contained and will not materially impact its operations.
Health insurer Clover Health Investments has disclosed a cybersecurity incident where a hacker gained access to three employee accounts through social engineering. The company detected unusual login activity on July 4 and subsequently identified the breach.
The affected accounts belonged to non-managerial employees involved in member visit scheduling and broker-facing sales. While these accounts could access some personal and protected health information, Clover Health stated that corporate financial or claims systems were not compromised.
Clover Health has launched an investigation with external cybersecurity experts, taken steps to contain the activity, and notified law enforcement. The company believes the unauthorized access has been curbed and ended, and it does not anticipate a material impact on its business or financial results. An ongoing review will determine what information may have been accessed, and affected members will be notified if necessary.
Originally published by CNA. Summarized and contextualized by our editorial team with added local perspective. Read our editorial standards.