Becker's Healthcare April 30, 2024
Naomi Diaz

The ransomware group responsible for the Feb. 21 cyberattack on UnitedHealthcare subsidiary Change Healthcare used stolen credentials to remotely access the company’s systems, according to testimony from UnitedHealth CEO Andrew Witty.

Mr. Witty submitted the written testimony prior to a House subcommittee hearing on May 1 regarding the Change ransomware attack. In his testimony, Mr. Witty said hacking group ALPHV, also known as BlackCat, “used compromised credentials to remotely access a Change Healthcare Citrix portal.” This occurred Feb. 12, according to Mr. Witty.

“The portal did not have multi-factor authentication. Once the threat actor gained access, they...

Today's Sponsors

Venturous
Got healthcare questions? Just ask Transcarent

Today's Sponsor

Venturous

Continue Reading

 
Topics: Cybersecurity, Health IT, Insurance, Payer, Provider, Technology
Related Articles:
How Quest pre-enrollment data can help your health plan serve members better
Cancer Patients Fighting Insurers: A Growing Trend
5 considerations for health plans evaluating the VOI of healthcare technology
Making Sense of the Federal Budget Process for Managed Care
Why Medicaid is the most innovative payer in healthcare | Viewpoint

Share This Article