Skip to main content

Prospective & Enrolled Members: 800-405-9681 (TTY 711) | Provider Inquiries: 1-855-969-5907 (TTY 711)

NationsBenefits, LLC, Cybersecurity Incident


NationsBenefits provides supplemental benefits administration services to certain healthcare plans. We were recently one of many organizations impacted by a cybersecurity attack at Fortra, LLC (Fortra)—a third party vendor we used to exchange files with some of our health plan customers. The incident impacted some health plan members’ personal information, but did not disrupt any of NationsBenefits’ supplemental benefits administration operations. This notice explains the incident, the measures we have taken in response and the steps individuals can take to protect their personal information.

On or around January 30, 2023, Fortra experienced a data security incident in which a malicious actor(s) accessed or acquired the data of multiple organizations, including NationsBenefits. When we learned of this incident on February 7, 2023, we immediately took steps to secure our systems and launched an investigation, which was conducted by an experienced outside law firm and a leading cybersecurity firm. As part of our investigation, we analyzed the impacted data to determine whether any individual’s personal information was subject to unauthorized access or acquisition. Beginning on or around February 13, 2023, we confirmed that, unfortunately, certain members’ personal information was affected by the incident.

The information involved in the incident included the following data elements of some health plan members: name, demographic information (including address, phone number, gender, date of birth), phone number, health insurance number, medical ID number, Social Security number, date of service, medical device or product purchased and provider/care giver name. Importantly, not every impacted individual had all of these data elements impacted, or the same combination of data elements impacted.

Data privacy and security are among our highest priorities, and we have extensive measures in place to protect information entrusted to us. Upon discovering the incident, we immediately took steps to mitigate the risk to our impacted clients and the personal information of their members. We stopped using Fortra’s software and worked with experienced legal counsel and a leading cybersecurity firm to conduct a comprehensive investigation of the incident. We also notified law enforcement authorities and are cooperating with their investigation. To help prevent similar incidents from happening in the future, we have implemented and are continuing to implement additional procedures to further strengthen the security of our IT system environments.

Individuals should remain vigilant against incidents of identity theft and fraud, review account statements, and monitor their free credit reports for suspicious activity and to detect errors. Individuals can obtain a free copy of their credit report online at, by calling toll-free (877) 322-8228, or by mailing an Annual Credit Report Request Form (available at to: Annual Credit Report Request Service, P.O. Box 105281, Atlanta, GA, 30348-5281.

We regret that this incident occurred and any concern it may cause. We take the confidentiality and security of medical and personal information very seriously and will continue to take steps to prevent a similar incident from occurring in the future.


Provider Partner Health Plans are HMO-SNPs with Medicare contracts. Enrollment in Provider Partner Health Plans depends on contract renewal. Y0135_PPHPWEB_2023