TennCare members’ information subjected to email breach

Published 10:11 am Tuesday, November 12, 2019

NASHVILLE (AP) — Officials say the private information of nearly 44,000 TennCare members may have been stolen during a breach of the email system of a vendor for the state’s Medicaid agency.

The Tennessean reports that Magellan Health Systems says information including members’ names and social security numbers was potentially compromised because a Magellan employee was subjected to a phishing scheme.

Magellan says in a news release that the scheme allowed access to the employee’s email account, which contained members’ information. Magellan is TennCare’s pharmacy benefits manager.

Subscribe to our free email newsletter

Get the latest news sent to your inbox

Magellan said a third-party investigation found no evidence the hacker who accessed company emails “actually accessed, viewed or attempted to use” the information, but members’ protected health information still may have potentially been accessed.

A TennCare spokeswoman says 43,847 people may have been affected. Affected members are being notified.