Topics
recent
AI
Amazon
Image Credits:Mike Bradley / Bloomberg / Getty Images
Apps
Biotech & Health
Climate
Image Credits:Mike Bradley / Bloomberg / Getty Images
Cloud Computing
Commerce
Crypto
initiative
EVs
Fintech
Fundraising
gadget
Gaming
Government & Policy
Hardware
Layoffs
Media & Entertainment
Meta
Microsoft
privateness
Robotics
Security
societal
outer space
Startups
TikTok
Transportation
speculation
More from TechCrunch
upshot
Startup Battlefield
StrictlyVC
newssheet
Podcasts
Videos
Partner Content
TechCrunch Brand Studio
Crunchboard
get hold of Us
Change Healthcare , the UnitedHealth - owned wellness technical school company thatlost more than 100 million multitude ’s sensible wellness datain a ransomware attack last year , enjoin on Tuesday that the society has “ substantially ” completed notify stirred someone about the massive data severance .
The February 2024 ransomware attack on Change Healthcare , one of the braggy processors of patient billing in the United States , ensue in months - retentive outages that interrupt care across the U.S. healthcare system . The data breach also becamethe largest know thievery of medical data in U.S. history . Change Healthcare pay the cyberpunk a ransom with the aim ofpreventing them from publishing any moreof the slip information , and in interchange , obtained a written matter of the slip data to begin notifying citizenry whose information was taken .
In an update to itsdata breach notice on its websiteon Tuesday , Change Healthcare said it has “ send word its impacted customer ” for whom the companionship has a postal address on file cabinet . The healthcare monster said it “ may not have sufficient addresses for all potentially impacted individuals , ” and that the site notice was to “ allow customers and individuals with data about the criminal cyberattack . ”
But if you seek the web for the Change Healthcare data breach detect , you ’re unlikely to discover the internet page in hunting engine termination .
TechCrunch ’s review of the breach notice ’s web pageboy source computer code reveals Change Healthcare admit hidden “ noindex ” codification on the notice , which tell search engines to ignore the World Wide Web page , making it more unmanageable for anyone searching the web for the notice to find it in search results . Change Healthcare had been include the “ noindex ” code on its datum breach observance sinceat least November 20 , 2024 .
It ’s indecipherable why Change Healthcare hid the page from search engine . UnitedHealth spokesperson Tyler Mason did not comment on the reason why Change Healthcare let in the codification to hide the data breach notice . When involve , the voice was unable to provide a specific figure of individual that Change Healthcare had notified of the breach beyond the estimated 100 million numeral shared with the U.S. government ’s wellness department in October 2024 .
A spokesperson for the Department of Health and Human Services ’ Office for Civil Rights , which oversees federal investigations of data breach involving protected wellness information , did not respond to a request for comment on the topic .
Change Healthcare has been criticized for being obtuse to notify affected individuals of the rupture — the company only started to do so four months after it had received a copy of the steal single file . The delay in public revelation prompted several U.S. states , includingCalifornia , Massachusetts , NebraskaandNew Hampshire , to interfere by apprise residents to stick alert to identity element theft and imposter follow the data breach .
In December 2024,Nebraska brought legal legal action against Change Healthcarefor a string of certificate failings that go to the rupture . The state ’s attorney full general , Mike Hilgers , tell Change Healthcare ’s deficiency of adequate notice to affected individuals left the state ’s citizens “ more vulnerable to exploitation of the sensitive personal financial , health , and identifying information . ”
Corrected connectedness to California ’s card in eighth paragraph .
