Change Healthcare hackers broke in using stolen credentials - and no MFA, says UHG CEO

from TechCrunch 10 months ago

The ransomware gang used stolen credentials to remotely access Change Healthcare's systems lacking multi-factor authentication, stealing substantial health data impacting a large portion of the U.S. population.
TechCrunchhttps://techcrunch.com/2024/04/30/uhg-change-healthcare-ransomware-compromised-credentials-mfa/

Security lapse with no multi-factor authentication on the Citrix portal enabled lateral movement for data exfiltration; investigators will scrutinize this gap post-attack for system deficiencies.
TechCrunchhttps://techcrunch.com/2024/04/30/uhg-change-healthcare-ransomware-compromised-credentials-mfa/

Read at TechCrunch

#ransomware #data-breach #cybersecurity #healthcare-data-security #multi-factor-authentication

Collection

[

...

]

Change Healthcare hackers broke in using stolen credentials - and no MFA, says UHG CEO | TechCrunchChange Healthcare hackers broke in using stolen credentials - and no MFA, says UHG CEO | TechCrunch Briefly

Change Healthcare hackers broke in using stolen credentials - and no MFA, says UHG CEO | TechCrunch
Change Healthcare hackers broke in using stolen credentials - and no MFA, says UHG CEO | TechCrunch
Briefly