4 Over LLC Group Health Plan
Your Personal Info Could Be
Exposed Online After
This Hospital Breach
Breach Description
The breach at 4 Over LLC Group Health Plan in California involved a significant data security incident that occurred in November 2022. 4 Over LLC, a business-to-business wholesale trade printing company based in Glendale, California, discovered suspicious activity on its network between November 16 and November 19, 2022. The company’s investigation determined that an unauthorized party may have accessed or copied certain files on its systems during this period[3][5].
The potentially affected information includes consumers’ full names, Social Security numbers, driver’s license or state-issued identification numbers, financial account or credit/debit card numbers, passport numbers, medical information (such as treatment and diagnosis information), health insurance information (including group number and subscriber name), and dates of birth[1][3]. The breach notification also specified that AFLAC plan data was included in the breach[3].
In response to the breach, 4 Over LLC began notifying individuals whose information may have been impacted in December 2023, more than a year after the breach was detected. The delay in notification was attributed to the company undertaking “a time-intensive and thorough review” of the impacted documents[5]. 4 Over LLC is reviewing its existing policies and procedures regarding cybersecurity and is evaluating additional measures to enhance its security posture[5].
Affected individuals were advised to carefully review the breach notice, retain a copy, enroll in any free credit monitoring services provided by 4 Over LLC, change passwords and security questions for online accounts, regularly review account statements for signs of fraud or unauthorized activity, monitor credit reports for signs of identity theft, and contact a credit bureau(s) to request a temporary fraud alert[1].
Attorneys are investigating whether a class action lawsuit can be filed in light of the 4 Over data breach, and they are seeking to hear from individuals who received a notice stating they were impacted. A successful class action lawsuit could potentially provide consumers with compensation for any harm resulting from the breach and might also compel 4 Over to take proper steps to protect the information it was entrusted with[3].
Citations:
- https://www.turkestrauss.com/2023/12/06/4-over-data-breach-investigation/
- https://www.humana.com
- https://www.classaction.org/data-breach-lawsuits/4-over-llc-december-2023
- https://www.upmchealthplan.com
- https://www.hipaajournal.com/ransomware-groups-attack-3-healthcare-providers/
- https://www.multiplan.us
- https://ocrportal.hhs.gov/ocr/breach/breach_report.jsf?adobe_mc=MCMID%3D02408406485458979789220680779370557994%7CMCORGID%3DA8833BC75245AF9E0A490D4D%2540AdobeOrg%7CTS%3D1696377600
- https://www.northwell.edu
- https://oag.ca.gov/privacy/databreach/list
- https://www.osha.gov
- https://www.benefitspro.com/2023/07/19/hca-healthcare-hit-with-4-class-action-lawsuits-following-patient-data-breach/?slreturn=20240012172622
- https://www.torrancememorial.org
- https://www.mass.gov/lists/data-breach-notification-letters-december-2023
- https://www.tricare.mil
- https://www.fiercehealthcare.com/payers/blue-shield-california-discloses-data-breach-number-members-impacted-unclear
- https://techcrunch.com