AG Ellison calls on UnitedHealth to provide more help in cyberattack

Christopher Snowbeck, Star Tribune

Updated April 25, 2024 at 5:25 PM·2 min read

Oops!
Something went wrong.
Please try again later.

Minnesota Attorney General Keith Ellison is pushing UnitedHealth Group to provide more help for health care providers and patients impacted by the cyberattack at the company's subsidiary, Change Healthcare.

Ellison and 21 other state attorneys general sent a letter Thursday to the Minnetonka-based health care giant outlining concerns, including allegations that UnitedHealth Group has been unfairly providing more assistance to clinics that it owns and operates.

The cyberattack response from both Change Healthcare and UnitedHealth Group has so far been inadequate, the attorneys general wrote. They said health care providers have been unable to reach staff who can provide timely information about everything from the data that has been breached to whether systems have ongoing cyber vulnerabilities.

"You must do more than you are currently to avoid imposing further harm to our states' health care infrastructure and the patients who rely on it...," the attorneys general wrote in the letter to UnitedHealth chief executive Andrew Witty. "We are also deeply concerned by the perception that practices owned by United may be getting more immediate relief and more favorable terms from the financial assistance program."

UnitedHealth Group said in a statement that ever since the incident surfaced, the company has prioritized patient access to care as well as providing resources and support to individuals, health care providers and customers.

"We continue to offer financial assistance to those providers who need it and encourage them to contact us," the company said.

The February cyberattack targeted a UnitedHealth subsidiary that runs a widely used clearinghouse for electronic claims data that processed about half of all claims in the U.S. The impact has been felt at pharmacy counters, where patients initially struggled to fill prescriptions, and at hospitals and clinics, where the system for filing claims for payment from health insurers has been severely disrupted.

This week, UnitedHealth Group said a substantial proportion of Americans may have had their personal data compromised in the cyberattack and offered free credit monitoring and identity theft protection.

The company said it likely will take several months of continued analysis to identify and notify affected customers and individuals. IT services are continuing to recover, UnitedHealth Group said, with pharmacy systems back to near-normal levels and medical claims flowing at near-normal levels.

TechCrunch
UnitedHealth data breach should be a wake-up call for the UK and NHS
The ransomware attack that has engulfed U.S. health insurance giant UnitedHealth Group and its tech subsidiary Change Healthcare is a data privacy nightmare for millions of U.S. patients, with CEO Andrew Witty confirming this week that it may impact as much as one-third of the country. As one of the largest healthcare companies in the U.S., UnitedHealth is well known domestically, intersecting with every facet of the healthcare industry from insurance and billing and winding all the way through the physician and pharmacy networks -- it's a $500 billion juggernaut, and the 11th largest company globally by revenue.
TechCrunch
UnitedHealth CEO tells Senate all systems now have multi-factor authentication after hack
UnitedHealth Group Chief Executive Officer Andrew Witty told senators on Wednesday that the company has now enabled multi-factor authentication on all the company’s systems exposed to the internet in response to the recent cyberattack against its subsidiary Change Healthcare. The lack of multi-factor authentication was at the center of the ransomware attack that hit Change Healthcare earlier this year, which impacted pharmacies, hospitals and doctors' offices across the United States. Multi-factor authentication, or MFA, is a basic cybersecurity mechanism that prevents hackers from breaking into accounts or systems with a stolen password by requiring a second code to log in.
TechCrunch
UnitedHealthcare CEO says 'maybe a third' of US citizens were affected by recent hack
Two months after hackers broke into Change Healthcare systems stealing and then encrypting company data, it’s still unclear how many Americans were impacted by the cyberattack. Last month, Andrew Witty, the CEO of Change Healthcare’s parent company UnitedHealth Group, said that the stolen files include the personal health information of “a substantial proportion of people in America.” On Wednesday, during a House hearing, when pushed to give a more definitive answer, Witty testified that the breach impacted “I think, maybe a third [of Americans] or somewhere of that level.”
TechCrunch
Change Healthcare hackers broke in using stolen credentials — and no MFA, says UHG CEO
The ransomware gang that hacked into U.S. health tech giant Change Healthcare used a set of stolen credentials to remotely access the company's systems that weren't protected by multifactor authentication (MFA), according to the chief executive of its parent company, UnitedHealth Group (UHG). UnitedHealth CEO Andrew Witty provided the written testimony ahead of a House subcommittee hearing on Wednesday into the February ransomware attack that caused months of disruption across the U.S. healthcare system. This is the first time the health insurance giant has given an assessment of how hackers broke into Change Healthcare's systems, during which massive amounts of health data were exfiltrated from its systems.
TechCrunch
UnitedHealth says Change hackers stole health data on 'substantial proportion of people in America'
Health insurance giant UnitedHealth Group has confirmed that a ransomware attack on its health tech subsidiary Change Healthcare earlier this year resulted in a huge theft of Americans' private healthcare data. UnitedHealth said in a statement on Monday that a ransomware gang took files containing personal data and protected health information that it says may "cover a substantial proportion of people in America." The health insurance giant did not say how many Americans are affected but said the data review was "likely to take several months" before the company would begin notifying individuals that their information was stolen in the cyberattack.
TechCrunch
US think tank Heritage Foundation hit by cyberattack
Conservative think tank The Heritage Foundation said on Friday that it experienced a cyberattack earlier this week. A person with knowledge of the cyberattack told TechCrunch that efforts at Heritage were underway to remediate the cyberattack, but said that it wasn't immediately known what, if any, data was taken. Politico, which first reported the news of the cyberattack on Friday, cited a Heritage official as saying the organization "shut down its network to prevent any further malicious activity while we investigate the incident."
Yahoo Finance
The ending of Google's monopoly trial has Silicon Valley on edge
Google has a lot at stake as a federal judge weighs whether the tech giant’s search empire should be broken up. But so does the rest of Silicon Valley.
Yahoo Life Shopping
This portable power station provides much-needed power during spring storms — and it's $100 off
No power? No problem — this beast can keep you juiced up for hours.
Yahoo Life Shopping
Julia Roberts' favorite multitasking moisturizer is on sale for just $14 at Amazon
The ever-Pretty Woman uses this face and body cream to keep her youthful glow.
Autoblog
The best aluminum polish of 2024
Aluminum polish is great for restoring and protecting metal surfaces. It can be used on wheels, exhaust tips, and other metal surfaces that need cleaning.
Yahoo Life Shopping
Wayfair Way Day 2024 is epic — we found the 30+ best deals to shop during the annual sale
Save up to 80% on finds for every room of your home, all editor-approved!
Yahoo Life Shopping
'Better than my Beautyrest': This cooling memory foam pillow is just $20 at Wayfair's Way Day sale — that's 80% off
So long, night sweats! Score the pillow that more than 16,000 five-star reviewers can't stop gushing about.
Yahoo Life Shopping
Kyle Richards gave us a hot tip on a Mother's Day gift and it's just $40: 'Look at the cuteness of this beach bag'
You don't have to spend a ton of money to make mom feel like a million bucks.
Yahoo Life Shopping
10 Mother's Day gifts from Oprah's Favorite Things list that will arrive in time — starting at $25
Surprise Mom with gifts approved and used by Oprah herself.
Yahoo Sports
Chris Finch will be on T'Wolves' bench for Game 1 vs. Nuggets days after knee surgery
Finch suffered the injury during Game 4 of the T'Wolves' first-round series.
Yahoo Sports
No one was airing Angel Reese and Kamilla Cardoso's WNBA preseason debuts, so an X user livestreamed it
The quality was choppy, but it was better than what the WNBA had.
Yahoo Sports
Kentucky Derby: Mystik Dan wins in three-horse photo finish, outruns favorite Fierceness in stunning upset
The 150th Kentucky Derby produced yet another magnificent two-minute spectacle.
TechCrunch
Google lays off workers, Tesla cans its Supercharger team and UnitedHealthcare reveals security lapses
Welcome, folks, to Week in Review (WiR), TechCrunch's regular newsletter that recaps the week that was in tech. A total of 200 people were let go across Google’s “Core” teams, which included those working on app platforms and other engineering roles. Elsewhere, Tesla CEO Elon Musk gutted the company's team responsible for overseeing its Supercharger network in a new round of layoffs -- despite recently winning over major automakers like Ford and General Motors.
Yahoo Finance
Berkshire Hathaway annual shareholders meeting: Warren Buffett talks Apple, AI, Paramount, and more
Warren Buffett took hours of questions from shareholders on Saturday for the first time since the passing of his right-hand man, Charlie Munger.
Yahoo Sports
Phillies shortstop Trea Turner expected to miss at least six weeks with strained hamstring
Trea Turner is expected to miss the next six weeks with the Philadelphia Phillies. The shortstop strained his hamstring running the bases.

News

Life

Entertainment

Finance

Sports

New on Yahoo

AG Ellison calls on UnitedHealth to provide more help in cyberattack

Recommended Stories

UnitedHealth data breach should be a wake-up call for the UK and NHS

UnitedHealth CEO tells Senate all systems now have multi-factor authentication after hack

UnitedHealthcare CEO says 'maybe a third' of US citizens were affected by recent hack

Change Healthcare hackers broke in using stolen credentials — and no MFA, says UHG CEO

UnitedHealth says Change hackers stole health data on 'substantial proportion of people in America'

US think tank Heritage Foundation hit by cyberattack

The ending of Google's monopoly trial has Silicon Valley on edge

This portable power station provides much-needed power during spring storms — and it's $100 off

Julia Roberts' favorite multitasking moisturizer is on sale for just $14 at Amazon

The best aluminum polish of 2024

Wayfair Way Day 2024 is epic — we found the 30+ best deals to shop during the annual sale

'Better than my Beautyrest': This cooling memory foam pillow is just $20 at Wayfair's Way Day sale — that's 80% off

Kyle Richards gave us a hot tip on a Mother's Day gift and it's just $40: 'Look at the cuteness of this beach bag'

10 Mother's Day gifts from Oprah's Favorite Things list that will arrive in time — starting at $25

Chris Finch will be on T'Wolves' bench for Game 1 vs. Nuggets days after knee surgery

No one was airing Angel Reese and Kamilla Cardoso's WNBA preseason debuts, so an X user livestreamed it

Kentucky Derby: Mystik Dan wins in three-horse photo finish, outruns favorite Fierceness in stunning upset

Google lays off workers, Tesla cans its Supercharger team and UnitedHealthcare reveals security lapses

Berkshire Hathaway annual shareholders meeting: Warren Buffett talks Apple, AI, Paramount, and more

Phillies shortstop Trea Turner expected to miss at least six weeks with strained hamstring