Aetna News Alerts

Aetna has protected its systems against “ShellShock” software bug

Experts recently disclosed a software bug in a utility that is commonly used in computers, servers and even smartphones and other Internet-connected devices, called ShellShock.

Aetna evaluó inmediatamente nuestra exposición. Hemos implementado controles de seguridad para protegerse contra esta vulnerabilidad, y hemos parcheado todos los sistemas críticos implicados en el procesamiento de datos de los clientes. Nuestros expertos en seguridad continúan analizando los componentes del sistema y de datos para asegurar la protección continuada de nuestros datos de los miembros, patrocinador del plan y el proveedor.

Además de abordar nuestra propia infraestructura, estamos trabajando diligentemente a través de todas las relaciones proveedor de terceros para identificar las exposiciones potenciales, a continuación, en estrecha colaboración con nuestros socios proveedores para asegurar la remediación de la vulnerabilidad.

We are confident in the proactive steps we have taken since learning of this vulnerability on September 25.

Seguridad del ordenador portátil es de alta prioridad

Your laptop allows you to work while being mobile. However, without proper security practices, your laptop is very susceptible to being lost or stolen. Besides the financial cost of replacing a laptop, the consequences of a lost or stolen device can include:

Loss of customer confidential and sensitive data
Las multas y sanciones asociadas con la pérdida de datos de clientes
El daño a la reputación de empresa
la posición competitiva de la empresa está en peligro

Si es posible, no almacene datos confidenciales de los clientes (miembro de SSN) en su dispositivo. Nuestra información de los clientes debe ser protegida en todo momento y sólo se debe utilizar y / o almacenado cuando sea absolutamente necesario.

Encrypt your hard drive

Encrypting the hard drive of your device is the best practice to secure its data. Recommended encryption tool options are:

Windows – BitLocker
Mac - FileVault
Windows or Mac - PGP

At the workplace

Whether you are in the office or teleworking, follow these steps to protect your laptop:

Utilice un dispositivo de cable de bloqueo, incluso si va a estar lejos de su escritorio durante sólo unos minutos
Store your laptop in a locked cabinet if you are leaving it for an extended period of time

Mientras viajaba

Mantenga el dispositivo con usted en todo momento y hacer lo siguiente:

automóviles
- Ocultarlo de la vista (preferiblemente en el maletero) Y cerrar el coche
- Hide the laptop before you leave for your destination. Do not wait until you arrive at the destination to hide the laptop—thieves are known to watch for such activity
- Do not place the laptop in
hoteles
- Lock your laptop in the room safe or the hotel’s safe (be sure to get a receipt) when you are away from your room.
- Si la caja fuerte del hotel no puede acomodar a su ordenador portátil, utilice el bloqueo del cable para fijarlo a un soporte no móvil (como el suelo o en la pared la luz anclada), mientras que el portátil no está en uso.
Airport
- Place your laptop on the conveyor belt as the very last item so you can retrieve it immediately following its security scan
- Mientras espera en línea o en un vestíbulo, mantenga la correa de su bolsa de transporte en el brazo o alrededor de la pierna - evitar colocar el elemento en el suelo

Esté preparado en caso de que su ordenador portátil se pierde

Record the laptop’s serial number and store it in a safe place, such as your wallet. This will facilitate recovery efforts and identify you as the owner of the laptop if it is lost or stolen.

Si su portátil es robado o perdido en el que se estaban llevando a cabo los negocios de Aetna, notificar inmediatamente al SPOC (único punto de contacto) al (888) 905-9500.

View the PDF

Heartbleed Alert

The recently announced “Heartbleed” vulnerability impacts a piece of software known as OpenSSL – a common software package used to assure the secure communication of data across the internet.

Like many organizations, Aetna has been working diligently to assess the impact of Heartbleed on our customers and information systems. To date we have determined that our core customer-serving and external facing systems are not impacted.

También hemos instituido remediación planes para asegurar que nos dirigimos rápidamente cualquiera de los sistemas vulnerables, deben ser identificados. Vamos a tomar otras precauciones necesarias para proteger los datos del cliente. Además de evaluar nuestra propia infraestructura, estamos evaluando diligencia aparatos de otros proveedores y aplicaciones que puedan verse afectados. Vamos a trabajar estrechamente con los proveedores afectados para controlar la remediación de la vulnerabilidad.

We initiated these proactive steps following the announcement of this vulnerability on April 7.

Current calling scams may name Aetna

February 2014

Aetna has become aware of impostors who are calling people – often multiple times a day – and fraudulently claiming to be from Aetna. The calls may be from an automated service that repeatedly dials a number or from a live person. These calls are not being placed by, or at the direction of, Aetna.

By falsely claiming to represent Aetna, one of our companies or any other reputable company, these scam artists want to trick you into (a) sharing personal information that they will use to later steal from you; or (b) giving them money for promised goods or services that you will never receive. This form of fraud is called "phishing" and it is illegal.

What to do with a suspicious call

Si tiene alguna sospecha sobre una llamada o que llama -

Do not pick up the call.
If you have answered, hang up immediately. Do not give out personal details.
Refrain from pushing a button to remove your number from the caller’s list. This may confirm that the scammer has reached a live, active phone number.
Report the number to the local fraud unit of your telephone company.
Report the number to the Federal Trade Commission.

A suspicious number

One suspicious telephone number that has come to our attention is 571-441-0062. That number is not from Aetna or any vendor working for Aetna.

Spoofing Your Number

Aetna also has received reports that legitimate business owners have received calls from scam artists purporting to represent Aetna. Thereafter, the telephone number of that legitimate business starts cropping up on the caller IDs of other people who then receive calls from these same apparent scam artists. The technology to fake a caller ID is called "spoofing," and it is a way to disguise the source of the incoming call.

Aetna does not "spoof" the numbers of our customers or potential customers. If your number has been spoofed, report it to the local fraud unit of your telephone company and the Federal Trade Commission.

If You Think You've Been Scammed

If you believe you are a victim of a phishing scam, act quickly. Contact your financial institution immediately to report your suspicions. In many instances, you can ask your financial institution to impose a password protection to prevent the unauthorized release of funds. If necessary, report any loss of funds to your bank, the police, and the Federal Trade Commission.

Las llamadas de Aetna legítimos

Aetna complies with the law when making calls to our members and business associates. We may need more information about a claim, for example, or we may be reaching out as part of our care management programs. If you are uneasy giving information to someone who says they are from Aetna – don’t. Instead, call the Member Services number on your ID card. Ask to have your call directed to the department asking for the information. That way, you can be sure you are giving the information to Aetna.

Want to know more about protecting your identity? Here’s another resource.