The Change Healthcare ransomware attack compromised personal information (names, addresses, dates of birth, phone numbers, email addresses), government identity documents (Social Security numbers, driver's licenses, passport numbers), medical records and health information (diagnoses, medications, test results, care and treatment plans), and health insurance information (plan and policy details, billing, claims, and payment information, including financial and banking details).
The ransomware attack on Change Healthcare disrupted computer systems, causing widespread outages and delays for thousands of healthcare providers who rely on the company for patient insurance and billing. This led to ambulances being diverted from hospitals, pharmacies unable to process insurance, and patients facing difficulties obtaining prescriptions or accessing medical care and procedures.
Change Healthcare is notifying affected individuals by mail, starting in late July. The company will send letters to individual patients whose information was compromised in the cyberattack. Additionally, Change and UnitedHealth have set up a website and call center where people who believe they were affected can set up free credit monitoring and receive support.