Skip to comments.Phoenix - Pentagon Health Care Contractor Massive Military Medical Records Theft
Posted on 12/31/2002 11:25:52 AM PST by swarthyguy
CBS) It could be one of the largest identity thefts ever. The Federal Trade Commission says sometime earlier this month computer hard drives containing more than 500,000 medical records were swiped at an Arizona company that does health care work for the Pentagon.
The Defense Department is computerizing the medical records of all military personnel and their families, but just as the project gets past the experimental phase officials are grappling with the theft of thousands of records from a Pentagon health care contractor.
Those records include Social Security numbers, medical claims histories, some credit card numbers, and other private information.
"I am not aware of a larger case, but at this point we don't know if any people have experienced identity theft," said Betsy Broader, assistant director of the FTC's division of planning and information.
The U.S. Attorney's office in Phoenix planned to unveil a reward Tuesday to help capture the culprits, according to the Phoenix-based TriWest Healthcare Alliance, which suffered the theft.
Authorities said thieves took computer equipment and files with the sensitive information during a break-in Dec. 14 at TriWest, a defense contractor that provides managed health care for military personnel in 16 states. It serves about 1.1 million active-duty personnel, their dependents and retirees.
With a person's name, birth date and Social Security number, someone could easily open credit accounts and create fake documents like drivers licenses, Broader said, but officials say they do not yet know the motives or skill level of the thieves.
Last month, three men were charged with allegedly running a high-tech scheme to steal credit information from thousands of victims, a crime authorities said represented "every American's worst financial nightmare multiplied tens of thousands of times."
Losses from that scam were put at $2.7 million and could grow as more victims are identified. U.S. Attorney James B. Comey said credit information for some 30,000 people was stolen.
David McIntyre, TriWest president and chief executive, said health care service would not be disrupted as a result of the theft from his company.
The breech comes as the Pentagon is building a network to computerize the entire military health care system, including the patient records of 8.7 million service members, retirees and their families who receive medical care under Pentagon programs.
The Pentagon is planning to roll out the project at up to seven military hospitals across the nation after successfully testing the concept at four locations. The system eventually will be expanded worldwide.
The Defense Department hailed the Composite Health Care System II, or CHCS II, as a potential "data gold mine" for military physicians and other health care professionals that will provide quick and easy access to military patient records worldwide.
Though the TriWest computers have no connection to the larger project, they did include information gathered for military health care, including names, addresses, medical claim histories and a small number of credit card numbers.
Pentagon officials nonetheless are taking the breech "very seriously" and are "going to learn from this issue and do what's necessary" to better guard such information in the future, spokesman Jim Turner said.
When the large computerization of military health records is completed, the bigger threat won't be a physical removal of computer hard drives but rather the potential theft of records from hackers who try to break into military computer networks, officials said.
Privacy experts are on the lookout for potential security lapses or unnecessary intrusions into people's personal information as the Pentagon puts more personal information into digital form.
"This makes it easier to find the information but also makes it easier for criminals" to access it, Ari Schwartz, associate director at the Center for Democracy and Technology, said of CHCS.
The Pentagon recently received an "F" grade for its computer security from the House Government Reform subcommittee on government efficiency, financial management and intergovernmental relations.
Bonnie Heald, the subcommittee's staff director, referred to the Pentagon's score of 38 out of 100 as "an abysmal failure."
The report did not take into account CHCS, which was too new to be included.
According to the Justice Department, there are 500,000 to 700,000 cases of identity theft in the United States each year, and 42 percent of the complaints to the Federal Trade Commission concern identity theft.
©MMII CBS Worldwide Inc.
I'm sure it only happened with Air Force and Navy records.
Hmmm..... Is thief skill related to the clean get away or is it more related to the number of records swiped? If they were more skilled all the records would at issue. I'm glad they were only skilled enough to get 500,000.
Are you asking how many beneficiaries?
Tricare (TriWest Healthcare Alliance) is run in regions...think Hillarycare, it's the same thing. TriWest serves the Central Region, which includes most of the western states: Arizona, Missouri, New Mexico, Utah, Colorado, Montana, North Dakota, Wyoming, Idaho, Nebraska, South Dakota, Kansas, Nevada, and parts of Texas.
If you leave the region, your coverage changes to the contractor that covers the region you move to. The only exception is people who leave the region temporarily..i.e., deploy.
So to answer your question, the only people affected outside CONUS are those who have deployed from this region.
Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.