Get updates delivered to you daily. Free and customizable.
ITPro
Change Healthcare shares details on medical data stolen during disastrous February cyber attack
By Ross Kelly,
11 days ago
Change Healthcare has shared details on the scale of the devastating ransomware attack which crippled its systems in February.
In a customer notice last week, the US-based healthcare technology provider confirmed it has begun notifying affected customers but warned that it’s still working to identify affected individuals and that the process could take some time.
The firm said it plans to contact all affected customers and provide information on how they can protect themselves. This includes offering two years of complimentary credit monitoring and identity theft protection services.
“CHC plans to mail written letters at the conclusion of data review to affected individuals for whom CHC has a sufficient address,” the company said.
“Please note, we may not have sufficient addresses for all affected individuals. The mailing process is expected to begin in late July as CHC completes quality assurance procedures.”
In the update, the company also shared fresh details on the type of data stolen by cyber criminals, which includes first and last names, phone numbers, email addresses, and dates of birth.
Other information stolen included:
Health insurance information (such as primary, secondary, or other health plans/policies, insurance companies, member/group ID numbers, and Medicaid-Medicare-government payor ID numbers).
Health information (including medical record numbers, providers, diagnoses, medicines, test results, images, care and treatment).
Billing, claims, and payment information (such as claim numbers, account numbers, billing codes, payment cards, financial and banking information, payments made, and balance due).
Other personal information such as Social Security numbers, driver’s licenses, state ID numbers, or passport numbers.
The company insisted that it has “not yet seen full medical histories appear in the data review”.
What happened in the Change Healthcare cyber attack?
Change Healthcare said it first detected the deployment of ransomware in its computer systems on February 21.
The incident quickly spiraled out of control and caused widespread disruption for customers across the country, affecting critical systems including pharmacy services, payment platforms, and medical claims.
The ALPHV/BlackCat ransomware group claimed responsibility for the attack.
Parent company UnitedHealth warned that a “substantial proportion” of people in the US were impacted. Similarly, the American Hospital Association described the attack as "the most significant and consequential incident of its kind against the US healthcare system in history".
The disruption caused by the initial breach was compounded by a second attack on the firm within the space of two months . The RansomHub threat collective claimed responsibility for this incident and demanded an additional ransom be paid.
This particular group is believed to have been an affiliate of ALPHV, and claims were made at the time that the attack was made to recoup losses after the group failed to pay associates.
Get updates delivered to you daily. Free and customizable.
Welcome to NewsBreak, an open platform where diverse perspectives converge. Most of our content comes from established publications and journalists, as well as from our extensive network of tens of thousands of creators who contribute to our platform. We empower individuals to share insightful viewpoints through short posts and comments. It’s essential to note our commitment to transparency: our Terms of Use acknowledge that our services may not always be error-free, and our Community Standards emphasize our discretion in enforcing policies. We strive to foster a dynamic environment for free expression and robust discourse through safety guardrails of human and AI moderation. Join us in shaping the news narrative together.
Comments / 0