Hackers last week broke into the health insurance online marketplace for Washington, D.C. and rifled the personal identifiable information (PII) of hundreds of Congressional legislators and staff, according to the exchange’s chief administrator.Szpindor added that it did not appear that House lawmakers were “the specific target of the attack.”
56,000 Customers Impacted
Some 56,000 of the marketplace’s 100,000 customers were impacted by the DC Health Link data breach, the DC Health Benefit Exchange Authority, which operates the online site, said on Friday, March 10, 2023, NBC News reported.Compromised data included Social Security numbers, birth dates, gender, health plan information, employer information and enrollee information, such as address, email, phone number, race, ethnicity and citizenship status.DC Health Link offers health care plans for members of Congress and some staffers. Roughly 11% of the exchange’s members work in Congress, either in D.C. or district offices nationwide.In a letter to the exchange's director posted on Twitter, House Speaker Kevin McCarthy, (R-CA) and Minority Leader Hakeem Jeffries, (D-NY) said the breach “significantly increases the risk that Members, staff and their families will experience identity theft, financial crimes, and physical threats.”In a letter obtained by NBC News following a Twitter post by the Daily Caller, DC Health Link Chief Administrative Officer Catherine L. Szpindor acknowledged last week that the online marketplace had been victimized by a data breach. Szpindor said she had been alerted to the incident by federal and local law enforcement.Commenting on the matter, Szpindor said:“Currently, I do not know the size and scope of the breach but have been informed by the Federal Bureau of Investigation (FBI) that account information and of hundreds of Member and House staff were stolen. I expect to have access to the list of impacted enrollees later today and will notify you directly if your information was compromised.”
