Blue Cross Data Breach and Late Notification

There has been a data breach of Blue Cross client information in New York:

” Blue-Cross Blue-Shield of Western New York says it is notifying tens of thousands of its members about identity theft concerns after one of it’s company laptops went missing.”

link: Blue Cross Addresses Identity Theft Concerns

The incident supposedly involves about forty thousand people. What is staggering is that it is now approaching mid March 2008. The laptop has been missing since November 2007. Blue Cross is alerting people now. Did Blue Cross not know that these data were gone for so many months? Surely they must have had some reason to delay notifying their clients for months and months and have these people’s confidential information at risk. Thousands and thousands of people may be curious.

Catherine Forsythe
Director of Operations

[tag]blue cross, notification, data breach, privacy, security, identity theft, laptop[/tag]