I just wanted to note that BlueCross BlueShield of Tennessee has finally completed its analysis of their data that was stolen.

If you'll recall, the story first broke back in OCT 2009.  BCBS was caught flatfooted, and had sent out contradicting statements (including an initial announcement which noted that data was protected with encryption software; or, at least, I understood it as such.  It was later revealed that they meant it was encoded...in digital audio, if I recall correctly).

In January of this year, I noted that the cost of the data breach had already cost BCBS $7 million.  A couple of months back, BCBS went public with the lessons they learned from the breach.

The final tally:

• Nearly 1 million BCBS members affected
• Nearly $10 million spent on contacting members affected, investigating the theft, and offering free credit protection
• 26,000 of 239,103 members considered to be "at high risk" signed up for credit monitoring and 2,700 for ID protection

I've already covered it in the links above, so I'm just going to end this post by noting that, hey, managed disk encryption software like AlertBoot might not have been a bad idea.  BCBS already know this, though.

Related Articles and Sites:
http://www.timesfreepress.com/news/2010/jul/16/bluecross-completes-analysis-data-theft/?local
http://www.databreaches.net/?p=12522