UnitedHealth cyberattack exposes 190 million in largest US healthcare data breach
UnitedHealth’s Change Healthcare unit experienced a significant data breach in February 2024, with news of the breach coming to light on February 21. Initially thought to impact approximately 100 million individuals, UnitedHealth has now disclosed that the actual number of affected individuals is much higher, totaling 190 million. This breach is now considered the largest breach of medical data in U.S. history, impacting nearly half of the country’s population.
The implications of a breach of this magnitude are severe, as malicious actors could potentially exploit the stolen data for various nefarious purposes if it ends up on the dark web. The updated impact assessment provided by UnitedHealth on January 24, 2025, confirmed the staggering number of affected individuals and revealed that the majority of those impacted have already been notified.
The stolen data included a wide range of personal and sensitive information, such as names, addresses, dates of birth, contact information, government ID numbers (including Social Security, driver’s license, and passport details), as well as health-related information like diagnoses, medications, test results, and insurance details. Additionally, financial and banking information tied to claims and payment data was compromised.
The breach was attributed to a ransomware attack carried out by the ALPHV/BlackCat ransomware and extortion group. This type of cyberattack locks victims out of their data unless a ransom is paid. ALPHV/BlackCat later claimed responsibility for the attack. Change Healthcare acknowledged during a House hearing in April that inadequate security measures, particularly the absence of two-factor authentication, contributed to the breach.
In response to the breach, individuals are advised to take several precautions to protect themselves, including removing personal information from the internet, being cautious of mailbox communications, avoiding phishing attempts, monitoring financial accounts, recognizing and reporting Social Security scams, and investing in identity theft protection services.
The breach underscores the importance of robust cybersecurity measures and vigilance in safeguarding personal information. Companies must prioritize the security of customer data to prevent such breaches in the future. As the investigation into the breach continues, individuals are urged to remain vigilant and take proactive steps to mitigate the risks associated with the unauthorized exposure of their personal information.
