UnitedHealth CEO Andrew Witty testified that a third of US citizens' personal data may have been exposed on the dark web due to a ransomware attack on its Change Healthcare unit, despite paying a $22 million ransom, with ongoing efforts to monitor for data leaks. The breach, potentially impacting a substantial proportion of individuals, is being investigated further, as the company cannot confirm the exact number yet. Concerns were raised about UnitedHealth's lack of multi-factor authentication, operational vulnerabilities, and national security implications of compromised records
In response, UnitedHealth is restoring operations using modern technologies, engaging third-party vendors for cybersecurity, such as Mandiant, Palo Alto Systems, and Bishop Fox, and enhancing security measures by sharing lessons learned from the attack with partners. The company is also testing new platforms with cybersecurity firms and working on improving customer confidence post-incident. ```https://www.csoonline.com/article/2097479/unitedhealth-hack-may-impact-a-third-of-us-citizens-ceo-testimony.html