Physical Address

304 North Cardinal St.
Dorchester Center, MA 02124

Flick International Ominous digital landscape depicting a cyberattack with a fractured shield at its center.

UnitedHealth Cyberattack: 190 Million Affected in Largest Healthcare Data Breach

UnitedHealth Cyberattack: 190 Million Affected in Largest Healthcare Data Breach

In February 2024, UnitedHealth’s Change Healthcare unit fell victim to a significant data breach. Reports emerged on February 21, revealing a startling development.

Initially, it was estimated that around 100 million individuals were impacted. However, UnitedHealth has since confirmed that the breach affects a staggering 190 million people, making it the largest medical data breach in U.S. history and impacting nearly half of the nation’s population.

The Scope and Consequences of the Breach

The repercussions of such a vast breach can be severe. If the compromised data ends up on the dark web, malicious actors could exploit it for various illicit activities.

On January 24, 2025, UnitedHealth officially acknowledged that the ransomware attack on its Change Healthcare unit indeed affected approximately 190 million individuals in the United States.

The company had previously estimated 100 million individuals in its initial report to the Office for Civil Rights, a U.S. Department of Health and Human Services division responsible for data breach investigations.

Notifications and Ongoing Investigations

UnitedHealth has reported that a majority of affected individuals have already been informed, either directly or through alternative methods. A complete tally will be confirmed and submitted to the Office for Civil Rights at a later stage.

The company assures that it is “not aware of any misuse of individuals’ information” following this incident. However, they have yet to disclose when they initially recognized the additional 90 million victims or how the revised figures were derived.

Impacts on Healthcare Services

The February cyberattack caused significant disruptions across the U.S. healthcare sector. In response to the breach, Change Healthcare temporarily took its systems offline, leading to interruptions in critical services such as claims processing, payments, and data sharing.

Types of Compromised Data

The stolen data encompasses a wide range of personal and sensitive information including:

  • Names
  • Addresses
  • Dates of birth
  • Phone numbers
  • Email addresses
  • Government ID numbers (Social Security, driver’s license, and passport)

Additionally, hackers may have accessed health-related information, which consists of diagnoses, medications, test results, imaging records, health care plans, and health insurance details. Reports indicate that financial and banking information linked to claims and payments was also compromised.

The Attack and Its Aftermath

This cyber breach stemmed from a ransomware attack executed by ALPHV/BlackCat, a notorious Russian-speaking extortion group. This form of malware locks users out of their systems unless a ransom is paid. ALPHV/BlackCat has since claimed responsibility for the attack.

During a House hearing in April, Change Healthcare admitted that deficiencies in their security protocols facilitated the breach, specifically the absence of crucial two-factor authentication measures.

Protecting Yourself After the Breach

If you believe you might be affected by this breach, there are several steps you can take to safeguard your information:

  • Reduce Your Online Footprint: Limit your personal information on the internet. Engaging a reputable data removal service can help you decrease your online exposure.
  • Beware of Mailbox Communications: Scammers may utilize the compromised addresses to send fraudulent letters. Verify the authenticity of any suspicious mail.
  • Stay Alert for Phishing Attempts: Scammers might target you with phishing attacks. Install robust antivirus software across all your devices.
  • Monitor Your Accounts: Regularly review your financial accounts for any unauthorized transactions.
  • Recognize Social Security Scams: If your Social Security number is compromised, you may be targeted for scams. Official communications typically occur via mail.
  • Invest in Identity Theft Protection: Consider utilizing identity theft protection services that monitor your personal information for any unauthorized transactions.

A Wake-Up Call for Cybersecurity

It is alarming that UnitedHealth, a company of this magnitude, failed to implement basic cybersecurity measures to protect sensitive customer data. With 190 million individuals potentially affected, the risk of becoming a target for cybercriminals has never been more real. While investigations continue into the full extent of the breach, taking immediate precautions is advisable.

As a society, it raises an important question: Are corporations and government entities doing enough to protect personal data and crack down on cyberattacks? The need for robust cybersecurity measures has never been clearer.