Change Healthcare Ransomware Attack Impacts Nearly 200 Million People
Health & WellnessUS News

Change Healthcare Ransomware Attack Impacts Nearly 200 Million People

46

TL/DR –

The ransomware attack on Change Healthcare, owned by UnitedHealth, reportedly affected nearly 200 million people, an increase from the initially reported 100 million. The accessed information likely included health insurance details, personal health information, financial and banking information, as well as personal data such as Social Security numbers. The company paid a $22 million ransom to the cybercrime group responsible for the attack, and while they claim to have found no evidence that full medical histories were taken, the review process is still ongoing.

Change Healthcare’s Ransomware Victim Count Nears 200 Million

The victim count from the ransomware attack on Change Healthcare, a subsidiary of UnitedHealth, has escalated to nearly 200 million. UnitedHealth reported this revised figure, initially covered by the Wall Street Journal, stating that “approximately 190 million” individuals were potentially affected by this cyberattack.

The company assured that a considerable number of these victims have already been informed. However, a final count will be presented to the Department of Health and Human Services’ Office for Civil Rights later. Last year, Change Healthcare warned federal authorities about the potential breach of around 100 million users’ data.

UnitedHealth has not yet clarified when they discovered the additional 90 million victims or the updated estimation methodology. The company’s CEO revealed to Congress that their services process approximately one-third of all American’s medical data, handling about half of all medical claims in the U.S.

Following a comprehensive analysis (over 90% complete), UnitedHealth claims hackers likely accessed health insurance specifics, personal health details, financial data, and Social Security numbers. However, there’s “no evidence” full medical histories or doctors’ charts were compromised.

Despite paying a $22 million ransom to the culprits, internal disputes led to the stolen data being publicly posted on a different group’s leak site. This has necessitated thorough document examination to identify impacted individuals for notification by Change Healthcare and UnitedHealth.

The breached data includes names, addresses, dates of birth, phone numbers, and email addresses. Attackers may also have accessed health insurance information, medical data, billing & payment information, and other personal identification details. UnitedHealth continues to analyze the full extent of this data breach.

In May, the HHS demanded that Change Healthcare notify all victims on behalf of numerous affected healthcare facilities, ensuring all Americans fully understand the impact on their personal medical records.

Secure Your Data with Recorded Future Intelligence Cloud

Learn more about cyber-threat intelligence and how to protect your data with the Recorded Future Intelligence Cloud.


Read More Health & Wellness News ; US News

You might also like More from author