The exploit allegedly affected non-sensitive data, but prompted a temporary suspension of claims portal accounts.