Cyberattack impacting customers of major Massachusetts health insurers

BOSTON — A pair of major Massachusetts health insurance companies are warning their members of a cybersecurity incident involving ransomware that is impacting systems that are used to service customers, accounts, brokers, and providers, officials said.

Point32Health, the corporate parent of Harvard Pilgrim Health Care and Tufts Health Plan, says it proactively took certain systems offline to contain the threat out of an “abundance of caution” after “detecting an unauthorized party.”

“We have notified law enforcement and regulators, and are working with third-party cybersecurity experts to conduct a thorough investigation into this incident and remediate the situation,” Point32Health said in a statement. “Our top priority is to ensure our members continue to have access to care.”

Customers who need immediate assistance have been told to contact the member services number on their ID card, which will provide directions for urgent needs.

“While we work diligently to restore the impacted systems as quickly and as safely as possible, our team is working around the clock to provide workarounds for members to receive the services they need,” Point32Health said.

Point32Health says customers will be notified if the cybersecurity incident involves a breach of any sensitive information.

Harvard Pilgrim Health Care and Tufts Health Plan merged in January 2021 under the Point32Health name.

This is a developing story. Check back for updates as more information becomes available.

Download the FREE Boston 25 News app for breaking news alerts.

Follow Boston 25 News on Facebook and Twitter. | Watch Boston 25 News NOW