Attackers Hit Three Rivers Provider Network
Table of Contents
- By Steven
- Nov 17, 2022
Las Vegas, Nevada-based insurance provider Three Rivers Provider Network offers insurance across the US. Unfortunately, on October 31, 2022, it announced a data breach that affected an unknown number of individuals.
How Did the Attack Occur?
The attack occurred when an unauthorized party accessed a TRPN employee’s email. Three Rivers Provider Network noticed the activity in June 2022. “On June 3, 2022, TRPN identified unauthorized access to one (1) employee email account by an unauthorized party. We immediately initiated an investigation and secured the compromised account,” said the company’s notice. “On August 17, 2022, we discovered that your personal information may have been accessed by an unauthorized party. “
What Information Was Viewed or Stolen?
Unfortunately, the hacker was able to gain access to some very sensitive client information. With the hacker's target being an insurance company, there is a great deal of personal data for the attacker to pick from.
- Birthdays
- Names
- Health information
- Social security numbers
- Driver’s license numbers
- Passport numbers
- State IDs
- Addresses
There is always the possibility that there was more involved in the data breach, but because the investigation was extensive, it’s unlikely that there’s more to the breach that TRPN is unaware of.
How Did Three Rivers Provider Network Admit to the Breach?
TRPN admitted to the breach on October 31, 2022, by sending notifications to all affected individuals and various states’ Attorney General’s Offices. In its statement, Three Rivers said, “To help protect your identity, we are offering complimentary credit monitoring services… This helps detect possible misuse of your personal information and provides you with identity protection support focused on immediate identification and resolution of identity theft.” The company offered credit monitoring with the victim’s choice of the world’s three most significant credit bureaus: Experian, TransUnion, and Equifax.
What Will Become of the Stolen Information?
The dark web goes by many names. The deep web. The darknet. The black market. In this cold, shadowy portion of the internet, the scum of our kind teems and thrives. This is where the hacker will most likely sell the collected data.
What Should Affected Parties Do in the Aftermath of the Breach?
Too many people remain uneducated on what to do after being victimized by a data breach. It's more complex than calling the police. However, a highly underrated resource is your state's identity theft hotline. Each state has one, and you should be able to find it on your state's Attorney General's Office's website. Another smart move is to accept the credit monitoring from Three Rivers Provider Network. Make sure to choose the best monitoring plan for you and your situation. "The Federal Trade Commission (FTC) recommends that you remain vigilant by checking your credit reports periodically. Checking your credit reports can help you spot problems and address them quickly," says the company statement. We also recommend researching and investing in device-monitoring software titles that alert you to scams and malware on your computer or phone.