United Health has confirmed in February that the ransomware attack on the company's Change and Healthcare has influenced about 190 million in the United States, which is almost twice as much as the previous estimation. do.
On Friday, the US medical insurance giant confirmed the latest numbers with TechCrunch after the market was closed.
“Change Healthcare has determined that the total number of individuals affected by Change Healthcare is approximately 190 million,” said Tyler Mason, a public relations officer of United Health Group. Child email I mentioned. “The majority of those people have already provided individual or alternative notifications. The final number will be confirmed at a later date and will be submitted to the Civil Rights Bureau.”
A United Health spokeswoman said, “I do not know that personal information has been abused as a result of this case, and it has not confirmed that the electronic medical record database appeared in the data during the analysis.” I mentioned.
Cyber attacks in February 2024 were the largest infringement of medical data in the history of the United States, causing a few months to suspend the US medical systems. Change Healthcare is a major healthcare company of UNITEDHEALTH, one of the largest employees of health, medical data, and patient records. It is also one of the largest medical insurance claims in the United States.
This infringement caused a large amount of health and insurance -related information, and some of them were published online by hackers who issued a crime statement of infringement. Later, Change Healthcare paid at least two ransom to prevent further disclosure of stolen files.
Unified Health had previously estimated that the number of affected individuals was about 100 million when a preliminary analysis was submitted to the Civil Rights Bureau, which is a department that investigates the U.S. Ministry of Health and Welfare.
Change Healthcare is in the data infringement notice that cyber criminals include name and address, date of birth, telephone number, e -mail address, government ID card (including social security number, driver's license number, passport number). Was stolen. The stolen health data includes not only health insurance information, but also diagnosis, medication, test results, images, care and treatment plan. According to Change, the data also includes financial information and bank information included in the patient's claim.
This infringement is believed to be due to the ALPHV Ransomware Group, the Russian Cyber Crime Group. According to the testimony that the United Health Group's Andrew Witty, CEO (CEO), went to a member of the Diet last year, hackers using stolen account authentication information that were not protected by multi -factor authentication. It invaded the system.