Information about recent phishing attack
Vimly Benefit Solutions (“Vimly”) provides administration services to the Oregon Homecare Workers Benefit Trust and the Oregon Homecare Workers Supplemental Trust (“Trusts”). This notice is regarding a recent incident that may have involved some of the Trusts’ participants’ information.
Vimly discovered that it was the target of an email phishing attack in which an unauthorized individual may have gained access to certain of Vimly’s email accounts between August 16 and 21, 2019. Vimly immediately secured the accounts and began an investigation. A leading cybersecurity forensics firm was engaged to assist in the investigation. The investigation was unable to definitively determine what information, if any, the unauthorized individual may have viewed or accessed in the email accounts.
Vimly advised the Trusts of suspicious activity in a limited number of employees’ email accounts on October 18, 2019. Vimly has determined that the email accounts may have contained some participants’ names, dates of birth, enrollment information, Social Security Numbers, and addresses. Vimly does not store or maintain participants’ health information.
Vimly is not aware of any fraud or misuse of participants’ information. In an abundance of caution, Vimly began mailing letters to participants whose information may have been contained in the affected email accounts on December 17, 2019, with an offer of complimentary credit monitoring and identity protection services. Vimly has also established a call center to answer any questions participants may have. The call center can be reached at 1-833-963-0526, Monday through Friday, 6:00 a.m. to 3:30 p.m. Pacific Time.
Vimly regrets any concern or inconvenience this issue may cause the Trusts’ participants. Vimly continues to aggressively pursue measures to protect and secure your information, including pursing HITRUST certification as evidence of our commitment to security and privacy, as well as reviewing our email protocols and continuously enhancing our security.