Change Healthcare's data breach continues to get worse.as previously reported, the medical information exchange paid a $22 million ransom to free data from cybercriminals, only to face a second threat demanding another payment. Earlier this week, some sensitive data from Change Healthcare and its parent company, UnitedHealth Group, was leaked online.
Now, hacker group RansomHub has begun selling data from this breach online.according to dark web informantThe agency, which monitors illegal activity on the Tor network, published a post on April 16 advertising the sale of stolen data.
in screenshot of post According to information shared by X/Twitter's Dark Web Informer, RansomHub claims to have data from “dozens of insurance companies” including Optum, Medicare, and UnitedHealth. The hackers claim that this trove of data includes medical records, dental records, personal health information for active military personnel, insurance records, and personally identifying information of patients, including addresses and Social Security numbers.
Perhaps most surprising, RansomHub claims to have “thousands of source code files from the Change Healthcare solution” that could be used to re-infiltrate an organization's systems. there is.
In the post, RansomHub warned that Change Healthcare and UnitedHealth's “handling of sensitive data from all of these companies” ultimately means RansomHub has data on most of the U.S. population. ing.
“For most Americans who doubt us, we probably have your personal information,” the hacker group wrote.
At the end of the post, RansomHub asks you to contact your insurance company to prevent your data from being sold to the highest bidder.