Change Healthcare Details
Change Healthcare
Nashville, Tennessee • 14000 employees • Healthcare
Industry
Healthcare
Security Incidents
1
Change Healthcare is a provider of revenue and payment cycle management that connects payers, providers, and patients within the U.S. healthcare system. The name also refers to a company founded in 2007 which subsequently became part of the current conglomerate.
Security Incidents
Change Healthcare Breach of May 2024
Show more
Show more
Show more
Severity Score
High
Type
UnknownSummary
In a cyberattack on Change Healthcare, a segment of UnitedHealth Group, attackers exploited compromised credentials to gain unauthorized access to a Citrix portal on February 12. The portal lacked multi-factor authentication (MFA), allowing the RansomHub ransomware group to exfiltrate approximately 4TB of sensitive data, including personal, medical, and insurance records, as well as source code files. The incident disrupted critical healthcare operations such as pharmacy services and claims processing, negatively impacting patient care and provider functionality. UnitedHealth Group initiated a...Show more
Severity
The recent cyberattack on Change Healthcare, executed by the RansomHub group, was extremely severe, scoring a 9 on the severity scale. This attack led to the exfiltration of 4TB of highly sensitive personal, medical, and insurance data, affecting a substantial proportion of the American population. The breach disrupted essential healthcare services, including pharmacy operations and claims processing, and resulted in significant financial losses, nearing $1 billion, and the company paying $22 million in ransom. With the healthcare sector being a prime target for ransomware, the sophisticated n...Show more
Impact
The incident at Change Healthcare was a ransomware attack that exposed a wide array of sensitive customer data. This included personal information, medical records, insurance details, Social Security numbers, and financial data, significantly impacting thousands of individuals and organizations including major healthcare entities like Medicare, Tricare, CVS-CareMark, and MetLife. The attack disrupted critical healthcare operations, notably affecting claims processing and pharmacy services, which posed substantial challenges for both patients and providers. Additionally, the breach underscores ...Show more
KEEP YOUR ENVIRONMENT SECURE
Weak credentials are the leading cause of breaches. Beyond Identity can help.
See MFA exploits in action
Watch how adversaries exploit companies in quick videos