Blue Cross and Blue Shield of Minnesota Company Cyber Security Posture
bluecrossmn.comAbout Blue Cross Blue Cross and Blue Shield of Minnesota is a taxable, nonprofit organization with a mission to make a healthy difference in people’s lives. Chartered in 1933 as Minnesota’s first health plan, we’ve promoted wider, more economical and timely availability of health services for the people of Minnesota for 80+ years. Blue Cross® and Blue Shield® of Minnesota is a nonprofit independent licensee of the Blue Cross® and Blue Shield® Association. Terms of Use All comments, visuals, videos and other type of material posted by fans on this site do not necessarily reflect the opinions or ideals of Blue Cross and Blue Shield of Minnesota (“Blue Cross”), its employees or affiliates. THIS SITE SHOULD NOT BE USED TO CONTACT BLUE CROSS ABOUT ANY CLAIM, MEDICAL CONDITION, PRODUCT OR SERVICE OFFERED BY BLUE CROSS. Blue Cross (a) does not represent or warrant the accuracy of any statement, product or service claims made here, (b) is not responsible for any such content on this site, and (c) does not endorse any opinions expressed on this site. All materials and comments posted by users must comply with LinkedIn’s Terms of Use. Blue Cross does not monitor every posting on this site. Blue Cross expects, however, that users will not post any comments or material that falls into any of the following categories and may have removed any comments or materials that: •Defame, abuse, harass, stalk, threaten or otherwise violate the legal rights (such as rights of privacy and publicity) of others. •Publish, post, distribute or disseminate any defamatory, infringing, obscene, indecent, misleading or unlawful material or information.
BCBSM Company Details
blue-cross-blue-shield-of-minnesota-
3443 employees
47860.0
524
Insurance
bluecrossmn.com
Scan still pending
BLU_1669272
In-progress
BCBSM Risk Score (AI oriented)Between 900 and 1000
This score is AI-generated and less favored by cyber insurers, who prefer the TPRM score.
BCBSM Global Score.png)
Blue Cross and Blue Shield of Minnesota Company Scoring based on AI Models
| Model Name | Date | Description | Current Score Difference | Score |
|---|---|---|---|---|
| AVERAGE-Industry | 03-12-2025 | This score represents the average cybersecurity rating of companies already scanned within the same industry. It provides a benchmark to compare an individual company's security posture against its industry peers. | N/A | Between 900 and 1000 |
Blue Cross and Blue Shield of Minnesota Company Cyber Security News & History
| Entity | Type | Severity | Impact | Seen | Url ID | Details | View |
|---|---|---|---|---|---|---|---|
| Blue Cross and Blue Shield of Minnesota | Breach | 100 | 4 | 11/2023 | BLU354271123 | Link | |
Rankiteo Explanation : Attack with significant impact with customers data leaksDescription: The U.S. healthcare services business Welltok revealed a data breach that affected around 8.5 million patients. The business was one among the targets of a widespread hacking campaign that took advantage of a zero-day vulnerability in the MOVEit Transfer programme. Threat actors were able to obtain patient information, including phone numbers, physical addresses, email addresses, and full names. Threat actors also obtained specific health insurance details, Medicare/Medicaid ID numbers, and Social Security numbers (SSNs) for some of the affected individuals. The following organisations, on behalf of which Welltok is delivering notice to affected individuals, are Asuris Northwest Health, BridgeSpan Health, Blue Cross and Blue Shield of Minnesota, Blue Cross and Blue Shield of Alabama, Blue Cross and Blue Shield of Kansas, Blue Cross and Blue Shield of North Carolina, Corewell Health, Faith Regional Health Services, Mass General, Brigham Health Plan, Priority Health, Regence BlueCross BlueShield of Oregon, Regence BlueShield, Regence BlueCross BlueShield of Utah, Regence Blue Shield of Idaho, St. Bernards Healthcare, and Sutter Health. | |||||||
Blue Cross and Blue Shield of Minnesota Company Subsidiaries
About Blue Cross Blue Cross and Blue Shield of Minnesota is a taxable, nonprofit organization with a mission to make a healthy difference in people’s lives. Chartered in 1933 as Minnesota’s first health plan, we’ve promoted wider, more economical and timely availability of health services for the people of Minnesota for 80+ years. Blue Cross® and Blue Shield® of Minnesota is a nonprofit independent licensee of the Blue Cross® and Blue Shield® Association. Terms of Use All comments, visuals, videos and other type of material posted by fans on this site do not necessarily reflect the opinions or ideals of Blue Cross and Blue Shield of Minnesota (“Blue Cross”), its employees or affiliates. THIS SITE SHOULD NOT BE USED TO CONTACT BLUE CROSS ABOUT ANY CLAIM, MEDICAL CONDITION, PRODUCT OR SERVICE OFFERED BY BLUE CROSS. Blue Cross (a) does not represent or warrant the accuracy of any statement, product or service claims made here, (b) is not responsible for any such content on this site, and (c) does not endorse any opinions expressed on this site. All materials and comments posted by users must comply with LinkedIn’s Terms of Use. Blue Cross does not monitor every posting on this site. Blue Cross expects, however, that users will not post any comments or material that falls into any of the following categories and may have removed any comments or materials that: •Defame, abuse, harass, stalk, threaten or otherwise violate the legal rights (such as rights of privacy and publicity) of others. •Publish, post, distribute or disseminate any defamatory, infringing, obscene, indecent, misleading or unlawful material or information.
Access Data Using Our API
Get company history
Rapid.png)
BCBSM Cyber Security News
Melissa Flicek’s Tech Vision For BlueCross BlueShield Of Minnesota
Flicek has brought a customer-centric approach to BlueCross BlueShield of Minnesota's technology strategy. She has focused on modernizing the company's digital ...
Payer Roundup—Gov. Newsom vetoes PBM, private equity bills; Elevance Health sued over anti-obesity meds
Minnesota-based Essentia Health informed patients it will no longer accept UnitedHealthcare or Humana Medicare Advantage plans starting in January.
Best Medicare Advantage Plans In Minnesota For 2025
Compare the best Medicare Advantage plans in Minnesota, including the variety of providers available and how you can simplify the process of ...
Lawsuit in Minnesota deepens pharmacy benefit manager pushback against state regulations
A new lawsuit challenges Minnesota's law for regulating pharmacy benefit managers, a group of companies that structure drug benefits within ...
Blue Cross of Minnesota paying $83K penalty over denied claims for sleep treatment
Blue Cross of Minnesota paying $83K penalty over denied claims for sleep treatment. Eagan-based health insurer cites coding issue with vendor ...
More than 1 million Michiganders affected by Welltok cyberattack
More than 1 million Michiganders affected by Welltok cyberattack · Attack hit nearly 8.5 million people nationally · Breach went undetected for ...
North Memorial, Blue Cross of Minnesota Unwind Joint Venture
North will regain full ownership of 25 clinics with conclusion of Blaze Health joint venture.
Healthcare Data Breach Statistics
In 2023, more than 93 million healthcare records were exposed or stolen in data breaches at business associates compared to 34.9 million records ...
Change Healthcare sued by CareFirst BlueCross BlueShield over last year’s data breach
The lawsuit alleges that the UnitedHealth Group subsidiary's cybersecurity standards were insufficient to prevent the attack.
BCBSM Similar Companies
Sedgwick
Sedgwick is a leading global provider of technology-enabled risk, benefits and integrated business solutions. The company provides a broad range of resources tailored to our clients’ specific needs in casualty, property, marine, benefits, brand protection and other lines. Every day, in every time zo
Blue Cross Blue Shield of Michigan
Blue Cross Blue Shield of Michigan is a nonprofit corporation and an independent licensee of the Blue Cross and Blue Shield Association. BCBSM's commitment to Michigan is what differentiates it from other health insurance companies doing business in the state. That mission has never changed. Nea
USI Insurance Services
USI is one of the largest insurance brokerage and consulting firms in the world, delivering property and casualty, employee benefits, personal risk, program and retirement solutions to large risk management clients, middle market companies, smaller firms and individuals. Headquartered in Valhalla, N
Anthem Blue Cross and Blue Shield
At Anthem Blue Cross and Blue Shield we understand our health connects us to each other. What we all do impacts those around us. So Anthem is dedicated to delivering better care to our members, providing greater value to our customers and helping improve the health of our communities. Independent l
Pragati Life Insurance Limited
Pragati Life Insurance Limited was established on January 30, 2000 as a public limited company under the Companies Act, 1994 with the philosophy of maintaining competitiveness, balanced with prudent management and fairness to all policyholders. The company obtained registration from the Department o
Aflac
Over 50 Million people worldwide have chosen Aflac because of our commitment to providing customers with the confidence that comes from knowing they have assistance in being prepared for whatever life may bring. With Aflac, whether you're a large business or a small one, you can provide your emp
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
BCBSM CyberSecurity History Information
How many cyber incidents has BCBSM faced?
Total Incidents: According to Rankiteo, BCBSM has faced 1 incident in the past.
What types of cybersecurity incidents have occurred at BCBSM?
Incident Types: The types of cybersecurity incidents that have occurred incident Breach.
Incident Details
Can you provide details on each incident?
Incident : Data Breach
Title: Welltok Data Breach
Description: The U.S. healthcare services business Welltok revealed a data breach that affected around 8.5 million patients. The business was one among the targets of a widespread hacking campaign that took advantage of a zero-day vulnerability in the MOVEit Transfer programme. Threat actors were able to obtain patient information, including phone numbers, physical addresses, email addresses, and full names. Threat actors also obtained specific health insurance details, Medicare/Medicaid ID numbers, and Social Security numbers (SSNs) for some of the affected individuals.
Type: Data Breach
Attack Vector: Exploitation of Zero-Day Vulnerability
Vulnerability Exploited: Zero-day vulnerability in MOVEit Transfer programme
Motivation: Data Theft
What are the most common types of attacks the company has faced?
Common Attack Types: The most common types of attacks the company has faced is Breach.
Impact of the Incidents
What was the impact of each incident?
Incident : Data Breach BLU354271123
Data Compromised: phone numbers, physical addresses, email addresses, full names, health insurance details, Medicare/Medicaid ID numbers, Social Security numbers
What types of data are most commonly compromised in incidents?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are phone numbers, physical addresses, email addresses, full names, health insurance details, Medicare/Medicaid ID numbers and Social Security numbers.
Which entities were affected by each incident?
Incident : Data Breach BLU354271123
Entity Type: Healthcare Services Business
Industry: Healthcare
Location: U.S.
Customers Affected: 8.5 million
Data Breach Information
What type of data was compromised in each breach?
Incident : Data Breach BLU354271123
Type of Data Compromised: phone numbers, physical addresses, email addresses, full names, health insurance details, Medicare/Medicaid ID numbers, Social Security numbers
Number of Records Exposed: 8.5 million
Sensitivity of Data: High
Data Exfiltration: True
Personally Identifiable Information: True
Additional Questions
Impact of the Incidents
What was the most significant data compromised in an incident?
Most Significant Data Compromised: The most significant data compromised in an incident were phone numbers, physical addresses, email addresses, full names, health insurance details, Medicare/Medicaid ID numbers and Social Security numbers.
Data Breach Information
What was the most sensitive data compromised in a breach?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were phone numbers, physical addresses, email addresses, full names, health insurance details, Medicare/Medicaid ID numbers and Social Security numbers.
What was the number of records exposed in the most significant breach?
Number of Records Exposed in Most Significant Breach: The number of records exposed in the most significant breach was 8.5M.
What Do We Measure?
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
