Lack of MFA Led to $22 Milllion Ransomware Payout
United Healthcare CEO Andrew Witty testified on Capitol Hill at a congressional hearing about the Change Healthcare hack and said that the cybercriminals entered through a portal that did not have multifactor authentication (MFA) enabled. This attack created trouble nationwide across the American healthcare system. Witty said all logins for Change Healthcare now have multifactor authentication enabled.
Russia-based ransomware gang ALPHV or BlackCat has claimed responsibility for the attack, alleging it stole more than six terabytes of data, including "sensitive" medical records. UnitedHealth paid a $22 million ransom in the form of bitcoin to BlackCat. The breach has already cost UnitedHealth Group nearly $900 million, company officials said in reporting first-quarter earnings last week, not including ransom paid. Read more about this story on our LinkedIn page
Russia-based ransomware gang ALPHV or BlackCat has claimed responsibility for the attack, alleging it stole more than six terabytes of data, including "sensitive" medical records. UnitedHealth paid a $22 million ransom in the form of bitcoin to BlackCat. The breach has already cost UnitedHealth Group nearly $900 million, company officials said in reporting first-quarter earnings last week, not including ransom paid. Read more about this story on our LinkedIn page