CORRECTED-UnitedHealth hackers used stolen login credentials to break in, CEO says

Reuters04-30

(Corrects headline and first paragraph, and updates paragraphs 5 and 6 to clarify that the breach occurred due to stolen credentials, not a Citrix vulnerability.) By Zeba Siddiqui SAN FRANCISCO, ...

Source Link

Disclaimer: Investing carries risk. This is not financial advice. The above content should not be regarded as an offer, recommendation, or solicitation on acquiring or disposing of any financial products, any associated discussions, comments, or posts by author or other users should not be considered as such either. It is solely for general information purpose only, which does not consider your own investment objectives, financial situations or needs. TTM assumes no responsibility or warranty for the accuracy and completeness of the information, investors should do their own research and may seek professional advice before investing.

Comments

We need your insight to fill this gap

Leave a comment

{"i18n":{"language":"en_US"},"isChannel":false,"data":{"share":"https://ttm.financial/m/news/2432391505?lang=en_US&edition=fundamental","thumbnail":"","is_english":true,"pubTime":"2024-04-30 04:59","share_image_url":"https://static.laohu8.com/5f26f4a48f9cb3e29be4d71d3ba8c038","id":"2432391505","market":"us","top_or_hot":-1,"title":"CORRECTED-UnitedHealth hackers used stolen login credentials to break in, CEO says","media":"Reuters","content":"<div>\n<p>(Corrects headline and first paragraph, and updates paragraphs 5 and 6 to clarify that the breach occurred due to stolen credentials, not a Citrix vulnerability.) \n By Zeba Siddiqui \n SAN FRANCISCO, ...</p>\n\n<a href=\"https://finance.yahoo.com/news/unitedhealth-hackers-took-advantage-citrix-205947340.html\">Source Link</a>\n\n</div>\n","source":"yahoofinance","html":"<!DOCTYPE html>\n<html>\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\" />\n<meta name=\"viewport\" content=\"width=device-width,initial-scale=1.0,minimum-scale=1.0,maximum-scale=1.0,user-scalable=no\"/>\n<meta name=\"format-detection\" content=\"telephone=no,email=no,address=no\" />\n<title>CORRECTED-UnitedHealth hackers used stolen login credentials to break in, CEO says</title>\n<style type=\"text/css\">\na,abbr,acronym,address,applet,article,aside,audio,b,big,blockquote,body,canvas,caption,center,cite,code,dd,del,details,dfn,div,dl,dt,\nem,embed,fieldset,figcaption,figure,footer,form,h1,h2,h3,h4,h5,h6,header,hgroup,html,i,iframe,img,ins,kbd,label,legend,li,mark,menu,nav,\nobject,ol,output,p,pre,q,ruby,s,samp,section,small,span,strike,strong,sub,summary,sup,table,tbody,td,tfoot,th,thead,time,tr,tt,u,ul,var,video{ font:inherit;margin:0;padding:0;vertical-align:baseline;border:0 }\nbody{ font-size:16px; line-height:1.5; color:#999; background:transparent; }\n.wrapper{ overflow:hidden;word-break:break-all;padding:10px; }\nh1,h2{ font-weight:normal; line-height:1.35; margin-bottom:.6em; }\nh3,h4,h5,h6{ line-height:1.35; margin-bottom:1em; }\nh1{ font-size:24px; }\nh2{ font-size:20px; }\nh3{ font-size:18px; }\nh4{ font-size:16px; }\nh5{ font-size:14px; }\nh6{ font-size:12px; }\np,ul,ol,blockquote,dl,table{ margin:1.2em 0; }\nul,ol{ margin-left:2em; }\nul{ list-style:disc; }\nol{ list-style:decimal; }\nli,li p{ margin:10px 0;}\nimg{ max-width:100%;display:block;margin:0 auto 1em; }\nblockquote{ color:#B5B2B1; border-left:3px solid #aaa; padding:1em; }\nstrong,b{font-weight:bold;}\nem,i{font-style:italic;}\ntable{ width:100%;border-collapse:collapse;border-spacing:1px;margin:1em 0;font-size:.9em; }\nth,td{ padding:5px;text-align:left;border:1px solid #aaa; }\nth{ font-weight:bold;background:#5d5d5d; }\n.symbol-link{font-weight:bold;}\n/* header{ border-bottom:1px solid #494756; } */\n.title{ margin:0 0 8px;line-height:1.3;color:#ddd; }\n.meta {color:#5e5c6d;font-size:13px;margin:0 0 .5em; }\na{text-decoration:none; color:#2a4b87;}\n.meta .head { display: inline-block; overflow: hidden}\n.head .h-thumb { width: 30px; height: 30px; margin: 0; padding: 0; border-radius: 50%; float: left;}\n.head .h-content { margin: 0; padding: 0 0 0 9px; float: left;}\n.head .h-name {font-size: 13px; color: #eee; margin: 0;}\n.head .h-time {font-size: 11px; color: #7E829C; margin: 0;line-height: 11px;}\n.small {font-size: 12.5px; display: inline-block; transform: scale(0.9); -webkit-transform: scale(0.9); transform-origin: left; -webkit-transform-origin: left;}\n.smaller {font-size: 12.5px; display: inline-block; transform: scale(0.8); -webkit-transform: scale(0.8); transform-origin: left; -webkit-transform-origin: left;}\n.bt-text {font-size: 12px;margin: 1.5em 0 0 0}\n.bt-text p {margin: 0}\n</style>\n</head>\n<body>\n<div class=\"wrapper\">\n<header>\n<h2 class=\"title\">\nCORRECTED-UnitedHealth hackers used stolen login credentials to break in, CEO says\n</h2>\n\n<h4 class=\"meta\">\n\n\n2024-04-30 04:59 GMT+8&nbsp;&nbsp;&nbsp;<a href=https://finance.yahoo.com/news/unitedhealth-hackers-took-advantage-citrix-205947340.html><strong>Reuters</strong></a>\n\n\n</h4>\n\n</header>\n<article>\n<div>\n<p>(Corrects headline and first paragraph, and updates paragraphs 5 and 6 to clarify that the breach occurred due to stolen credentials, not a Citrix vulnerability.) \n By Zeba Siddiqui \n SAN FRANCISCO, ...</p>\n\n<a href=\"https://finance.yahoo.com/news/unitedhealth-hackers-took-advantage-citrix-205947340.html\">Source Link</a>\n\n</div>\n\n\n</article>\n</div>\n</body>\n</html>\n","isBrief":false,"type":0,"news_type":1,"symbol":"LU0289739699.SGD","symbol_name":"AB INTERNATIONAL HEALTH CARE PORTFOLIO \"A\" (SGD) ACC","start_time":0,"source_url":"https://finance.yahoo.com/news/unitedhealth-hackers-took-advantage-citrix-205947340.html","article_id":"2432391505","we_media_id":null,"thumbnails":[],"rights":null,"url":"https://stock-news.laohu8.com/highlight/detail?id=2432391505","pubTimestamp":1714424387,"sourceInfo":{"source_id":"yahoofinance","name":"雅虎金融"},"weMediaInfo":null,"summary":"SAN FRANCISCO, April 29  - Hackers breached UnitedHealth's tech unit on Feb. 12 by using stolen login credentials that gave them remote access to its network, the largest U.S. health insurer will testify before a House panel this week.UnitedHealth CEO Andrew Witty's testimony before the House Energy and Commerce Committee will follow weeks of disruption to American healthcare since the insurer's Change Healthcare unit was hacked.On the morning of Feb. 21, the cybercriminal gang AlphV, aka BlackCat, locked up Change Healthcare's systems and demanded a ransom to unlock them, Witty will tell the House panel, according to a copy of his written testimony posted to the panel's website on Monday.\"Not knowing the entry point of the attack at the time, we immediately severed connectivity with Change’s data centers to eliminate the potential for further infection,\" the testimony says.As of April 26, UnitedHealth Group had provided more than $6.5 billion in accelerated payments and no-interest, n","collect":0,"end_time":0,"defaultTopTitle":"yahoo.com","property":[],"viewcount":null,"language":"en","relate_stocks":{"LU0289739699.SGD":"AB INTERNATIONAL HEALTH CARE PORTFOLIO \"A\" (SGD) ACC","IE00B2B36J28.USD":"JANUS HENDERSON GLOBAL LIFE SCIENCES \"I1\" (USD) INC","IE00BJT1NW94.SGD":"JANUS HENDERSON GLOBAL LIFE SCIENCES \"A2\" (SGDHDG) ACC","BK4532":"文艺复兴科技持仓","LU0234572021.USD":"高盛美国核心股票组合Acc","IE00BSNM7G36.USD":"NEUBERGER BERMAN SYSTEMATIC GLOBAL SUSTAINABLE VALUE \"A\" (USD) ACC","SG9999002232.USD":"Allianz Global High Payout USD","CHNGU":"Change Healthcare Inc. Tangible Equity Units","SG9999002224.SGD":"Allianz Global High Payout SGD","BK4534":"瑞士信贷持仓","LU0353189763.USD":"ALLSPRING  US ALL CAP GROWTH FUND \"I\" (USD) ACC","IE00BZ1G4Q59.USD":"LEGG MASON CLEARBRIDGE US EQUITY SUSTAINABILITY LEADER \"A\"(USD) INC (A)","IE00B19Z9Z06.USD":"Legg Mason ClearBridge - US Aggressive Growth A Acc USD","BK4533":"AQR资本管理(全球第二大对冲基金)","IE00BWXC8680.SGD":"PINEBRIDGE US LARGE CAP RESEARCH ENHANCED \"A5\" (SGD) ACC","BK4525":"远程办公概念","LU1430594728.SGD":"Eastspring Investments - Global Low Volatility Equity AS SGD","LU0211326755.USD":"TEMPLETON GLOBAL INCOME \"A\" (USD) ACC","LU0320765059.SGD":"FTIF - Franklin US Opportunities A Acc SGD","LU0158827948.USD":"ALLIANZ GLOBAL SUSTAINABILITY \"A\" (USD) INC","CSCO":"思科","IE0002270589.USD":"LEGG MASON CLEARBRIDGE VALUE \"A\" (USD) INC","LU1059921491.USD":"NORDEA 1 GLOBAL STABLE EQUITY \"HB\" (USDHDG) ACC","BK4527":"明星科技股","LU0198837287.USD":"UBS (LUX) EQUITY SICAV - USA GROWTH \"P\" (USD) ACC","LU0316494557.USD":"FRANKLIN GLOBAL FUNDAMENTAL STRATEGIES \"A\" ACC","BK4588":"碎股","IE00BFSS8Q28.SGD":"Janus Henderson Balanced A Inc SGD-H","LU1244550577.SGD":"FTIF - Franklin Global Multi-Asset Income A (Mdis) SGD-H1","BK4154":"管理型保健护理","SG9999001440.SGD":"United Global Dividend Equity Fund A SGD Dist","LU0211326839.USD":"TEMPLETON GLOBAL INCOME \"A\" (USD) INC","LU2286300806.USD":"Allianz Cyber Security AT Acc USD","LU0731783394.SGD":"Fidelity Global Dividend A-MINCOME(G)-SGD","IE00B7KXQ091.USD":"Janus Henderson Balanced A Inc USD","LU1244550494.USD":"FRANKLIN GLOBAL MULTI-ASSET INCOME \"A\" (USDHEDGED) ACC","LU1585245621.USD":"EASTSPRING INV GLOBAL LOW VOLATILITY EQUITY FUND \"A\" (USD) ACC B","LU0029864427.USD":"TEMPLETON GLOBAL \"A\" (USD) INC","IE00BFSS7M15.SGD":"Janus Henderson Balanced A Acc SGD-H","BK4581":"高盛持仓","LU0238689110.USD":"贝莱德环球动力股票基金","LU0234570918.USD":"高盛全球核心股票组合Acc Close","LU0109391861.USD":"富兰克林美国机遇基金A Acc","IE00B894F039.SGD":"Legg Mason ClearBridge - US Aggressive Growth A Acc SGD-H","IE00B19Z9505.USD":"美盛-美国大盘成长股A Acc","LU0417517546.SGD":"Allianz US Equity Cl AT Acc SGD","UNH":"联合健康","IE00B19Z3581.USD":"Legg Mason ClearBridge - Value A Acc USD","LU0053666078.USD":"摩根大通基金-美国股票A（离岸）美元","LU0266013472.USD":"AXA WF - Framlington Longevity Economy A Cap USD"},"translate_title":"修正——联合健康黑客使用窃取的登录凭证闯入，首席执行官说","themeId":null,"isJumpTheme":false,"ttsUrl":null,"symbols_score_info":{"UNH":1,"CHNGU":0.7,"CSCO":0.7},"content_text":"(Corrects headline and first paragraph, and updates paragraphs 5 and 6 to clarify that the breach occurred due to stolen credentials, not a Citrix vulnerability.) \n By Zeba Siddiqui \n SAN FRANCISCO, April 29 (Reuters) - Hackers breached UnitedHealth's tech unit on Feb. 12 by using stolen login credentials that gave them remote access to its network, the largest U.S. health insurer will testify before a House panel this week. \n UnitedHealth CEO Andrew Witty's testimony before the House Energy and Commerce Committee will follow weeks of disruption to American healthcare since the insurer's Change Healthcare unit was hacked. \n On the morning of Feb. 21, the cybercriminal gang AlphV, aka BlackCat, locked up Change Healthcare's systems and demanded a ransom to unlock them, Witty will tell the House panel, according to a copy of his written testimony posted to the panel's website on Monday. \n \"Not knowing the entry point of the attack at the time, we immediately severed connectivity with Change’s data centers to eliminate the potential for further infection,\" the testimony says. \n The criminals used compromised login credentials to remotely access a Change Healthcare Citrix portal that did not have multi-factor authentication, according to the testimony. That portal, offered by the private tech company Citrix Systems, allows for remote access to an organisation's desktops. \n Multi-factor authentication is a widely prescribed layer of security that prevents hackers from using stolen passwords to break into systems. It's unclear why the Change Healthcare portal did not have this security measure, and a UnitedHealth spokesperson did not respond to questions about it. \n A Citrix spokesman didn't immediately respond to a request for comment. U.S. officials issued multiple warnings about security loopholes in Citrix tools late last year, some of which were being used to breach healthcare groups. \n The hearing before the panel's subcommittee on oversight and investigations will focus on the cyberattack's impact on patients and providers. \n UnitedHealth has been working with the FBI and prominent cybersecurity firms to investigate the hack. Security experts from Google, Microsoft, Cisco and Amazon worked with teams from Mandiant and Palo Alto Networks to secure Change Healthcare's systems after the breach, according to the testimony. \n Last week, Witty said the company had paid the hackers a ransom to ensure the decryption of Change Healthcare's systems, although the size of the payment is not known. \n The company has been scrambling to contain the hit to healthcare payment processing across the country. Change processes 50% of all medical claims in the United States. \n As of April 26, UnitedHealth Group had provided more than $6.5 billion in accelerated payments and no-interest, no-fee loans to thousands of healthcare providers, according to Witty's testimony. (Reporting by Zeba Siddiqui in San Francisco; Editing by Michael Erman)","kind":null,"is_publish_news":null,"is_publish_highlight":null,"is_publish_live":null,"is_publish_wemedia":null,"editions":null,"symbols":[],"gpt_button":1},"commentList":[],"isCommentEnd":true,"newsSizeData":{"likeSize":0,"commentSize":0,"repostSize":0,"favoriteSize":0,"likeStatus":false,"favoriteStatus":false},"APP":{"userAgent":"Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)","isDev":false,"isTTM":true,"deviceId":"web-server-community-laohu8-v3","version":"4.22.4","shortVersion":"4.22.4","platform":"web","vendor":"web","appName":"ttm","isIOS":false,"isAndroid":false,"isTiger":false,"isTHS":false,"isWeiXin":false,"isWeiXinMini":false,"isWeiBo":false,"isQQ":false,"isBaiduSwan":false,"isBaiduBox":false,"isDingTalk":false,"isToutiao":false,"isOnePlus":false,"isHuaWei":false,"isXiaomi":false,"isXiaomiWebView":false,"isOppo":false,"isVivo":false,"isSamsung":false,"isMobile":false},"href":"/m/news/2432391505"}