Change Healthcare incident caused by compromised Citrix credentials

30 April 2024

UnitedHealth Group CEO Andrew Witty will testify before Congress on May 1 that threat actors used compromised credentials to remotely access a Change Healthcare Citrix portal — a portal that lacked multifactor authentication (MFA), a basic tenet of cybersecurity. The Change Healthcare case, in which Change Healthcare’s parent company UnitedHealth reportedly paid a $22 million ransom to ALPHV/BlackCat, has become the most wide-ranging cyberattack ever in the healthcare sector because Change Healthcare processes 15 billion healthcare transactions annually, affecting 1 in 3 patients.

Source: SC Magazine

Date:

30 April 2024

Categorie(s):

NEWS

Tag(s):

Change Healthcare, Citrix, IT, Network Security, Virtualization

Five Core Tenets Of Highly Effective DevSecOps Practices21 May 2024
Streamlining IT Security Compliance Using the Wazuh FIM Capability21 May 2024
Iranian State Hackers Partner Up for Large-Scale Attacks, Report21 May 2024
Four ways CISOs can navigate today’s legal and regulatory minefields21 May 2024
UK Armed Forces Data Exposed: MoD Cyber Attack Timeline21 May 2024