Less than a year after the massive data breach at the South Carolina Department of Revenue revealed almost 4 million Social Security Numbers and over 3 million bank account numbers, the South Carolina Health Insurance Pool has begun notifying current and previous subscribers that their information has been leaked again.
According to a letter dated December 18th a laptop owned by DeLoach & Williamson, an independent auditor contracted by SCHIP, was stolen from an employee’s car on October 16, 2013.
The SCHIP investigation found that the laptop contained an unspecified number of subscriber records, including: Social Security Number, last name, first and middle initials, dates of service, and provider identification numbers.
While they don’t believe the data theft specifically targeted subscriber information or that any has necessarily been leaked, SCHIP is offering a free one year subscription to Experian’s ProtectMyID Alert service, the same service that was provided by the Department of Revenue for the first year after their breach (they have since replaced it with a similar service from CSID).
So far I’ve been unable to find any public statement from SCHIP regarding the issue and there appears not to have been any news coverage as yet.