UnitedHealth paid ransom to bad actors, says patient data was compromised in Change Healthcare cyberattack

UnitedHealth paid ransom to bad actors, says patient data was compromised in Change Healthcare cyberattack


Omar Marques | Lightrocket | Getty Images

UnitedHealth Group on Monday said it paid a ransom to cyber threat actors to try and protect patient data, following the February cyberattack on its subsidiary Change Healthcare. The company also confirmed that files containing personal information were compromised in the breach.

“This attack was conducted by malicious threat actors, and we continue to work with the law enforcement and multiple leading cyber security firms during our investigation,” UnitedHealth told CNBC in a statement. “A ransom was paid as part of the company’s commitment to do all it could to protect patient data from disclosure.”

The company did not specify the ransom payment amount.

UnitedHealth, which has more than 152 million customers, said it has also determined that the cyber threat actors accessed files containing protected health information and personally identifiable information, according to a release Monday. The files “could cover a substantial proportion of people in America,” the release said.

Change Healthcare offers payment and revenue cycle management tools. The company facilitates more than 15 billion transactions annually, and one in every three patient records passes through its systems. This means even patients who are not UnitedHealth customers could have been impacted by the attack.

UnitedHealth said in the release that 22 screenshots, allegedly of the compromised files, have been uploaded to the dark web. The company said no other data has been published, and it has not seen evidence that doctors’ charts or full medical histories were accessed in the breach.

“We know this attack has caused concern and been disruptive for consumers and providers and we are committed to doing everything possible to help and provide support to anyone who may need it,” UnitedHealth CEO Andrew Witty said in the release.

UnitedHealth said that concerned patients can visit a dedicated website for access to resources. The company has launched a call center that will offer free identity theft protections and credit monitoring for two years, the release said.

The call center will not be able to offer any details about individual data impact given the “ongoing nature and complexity of the data review,” UnitedHealth said.



Source

Abortion pill makers brace for restrictions a year after Trump’s election
Health

Abortion pill makers brace for restrictions a year after Trump’s election

Mifepristone and Misoprostol pills are pictured Wednesday, Oct. 3, 2018, in Skokie, Illinois. Erin Hooley | Chicago Tribune | Tribune News Service | Getty Images Just over a year since Donald Trump was elected president again, the $6.9 billion abortion pill industry is operating under the same federal rules he inherited from former President Joe […]

Read More
Republicans push Obamacare tax credit alternatives as enrollment deadline looms
Health

Republicans push Obamacare tax credit alternatives as enrollment deadline looms

An Obamacare sign is displayed outside an insurance agency on Nov. 12, 2025 in Miami, Florida. Joe Raedle | Getty Images With enhanced Obamacare tax credits set to expire at the end of the year, Republicans are proposing new alternatives aimed at lowering the cost of health care. Their window for doing so is rapidly […]

Read More
Novo Nordisk shares plunge 10% after Alzheimer’s drug trial fails to hit key target
Health

Novo Nordisk shares plunge 10% after Alzheimer’s drug trial fails to hit key target

The Novo Nordisk A/S headquarters in Bagsvaerd, Denmark, on Wednesday, Nov. 5, 2025. Nichlas Pollier | Bloomberg | Getty Images Shares of Novo Nordisk on Monday fell as much 11% after the Danish drug pharmaceutical company said a highly-anticipated trial for Alzheimer’s disease failed to meet its main goal. The trial tested whether semaglutide — the […]

Read More
Powered by WordPress | WP Magazine by WP Mag Plus