- United Healthcare Data Failor affected around 190 million people
- The number initially was around 100 million
- Most victims have already been notified
The number of people affected by the cyber -care cyber service of 2024 is almost double the previous estimates, and is now in approximately 190 million, the company has admitted.
“The medical change of change has determined that the estimated total number of individuals affected by the cyber change of medical care is approximately 190 million,” said Tyler Mason, spokesman for UnitedHealth Group.
“The vast majority of these people have already received an individual or substitute warning. The final number will be confirmed and presented to the Office of Civil Rights on a later date. “
Alphv and Ransomhub
Computer pirates would generally abuse this data in Phishing attacks, commercial email commitment, electronic fraud and other cyber attack forms, but so far it has not happened, Mason added.
He said the company was, “it was not aware of any improper use of people’s information as a result of this incident and that it has not seen that the databases of electronic medical records appear in the data during the analysis.”
In this context, it is worth saying that the company paid the demand for rescue to the attackers.
When the change in medical care suffered a ransomware attack in early 2024, it was believed that an affiliate from the Alphv operation was behind the attack. Alhpv, also known as Blackcat, was a notorious operator who worked in a service model, sharing the loot with whom he managed to violate a victim and implement his code.
However, when an affiliate hit medical attention and managed to extort it for $ 22 million, things changed. Instead of sharing the loot, Alphv operators took everything and disappeared from the face of the earth. The affiliate, who was left with confidential data gigabytes, then renamed Ransomhub, and became one of the greatest threats.
They demanded a second payment, but it is not clear if that ever happened. Ransomhub eliminated the health exchange entry from its data leakage site, suggesting that the victims company may have paid it.
Through Techcrunch
