80 Million Anthem subscribers have their records hacked

Hackers were able to break into a health insurance database storing information for about 80 million people in an attack that will leave many wondering about how secure their data really is.

Encryption uses mathematical formulas to scramble data, converting sensitive details coveted by intruders into nonsensical data.

"We need a whole new look at HIPAA," said David Kibbe, CEO of DirectTrust, a nonprofit working to create a national framework for secure electronic exchange of personal health information.

"Any identifying information relevant to a patient ... should be encrypted," said Kibbe. It should make no difference, he says, whether that information is being transmitted on the Internet or sitting in a company database, as was the case with Anthem.

Anthem is the second-largest U.S. health insurer.

The statement from the privacy office said the kind of personal data stolen by the Anthem hackers is covered by HIPAA, even if it does not include medical information.

"The personally identifiable information health plans maintain on enrollees and members - including names and Social Security numbers - is protected under HIPAA, even if no specific diagnostic or treatment information is disclosed," the statement said.

Gooch advised Utahns who have Anthem insurance in other states or through out-of-state employers that they may need to track their credit. Impacted customers may call 1-877-263-7995 or go online to anthemfacts.com.