UnitedHealth's Change Healthcare Hit by RansomHub; US Military Data at Risk
April 9, 2024
Change Healthcare, part of UnitedHealth Group, has been hit by the RansomHub ransomware attack, demanding payment for 4TB of sensitive data.
The stolen data includes details of US military personnel and patient records, posing a significant privacy and security threat.
RansomHub has set a 12-day deadline for the ransom payment, after which they threaten to auction the data to the highest bidder.
This incident follows closely on the heels of a prior cyberattack on Change Healthcare, leaving the company in a vulnerable position.
There's speculation on whether RansomHub is connected to the known BlackCat ransomware group, highlighting the complexity of cybercriminal networks.
The US government is actively involved, offering a $10 million reward for information leading to the identification of the cybercriminals.
OODA stands ready to offer a suite of services, including intelligence, strategy, risk management, and crisis response to affected entities.
Summary based on 2 sources
Get a daily email with more Tech stories
Sources

SecurityWeek • Apr 9, 2024
Second Ransomware Group Extorting Change Healthcare
OODA Loop • Apr 9, 2024
Change Healthcare Targeted in Second Ransomware Attack