Priya Patel
TLDR:
- UnitedHealth Group confirms Change Healthcare data breach, with theft of protected health information affecting a substantial portion of Americans.
- APT28 exploits Windows Print Spooler vulnerability to perform post-compromise activities.
- US State Department imposes visa restrictions on individuals involved in the misuse of commercial spyware.
UnitedHealth Group has confirmed a significant data breach on its Change Healthcare platform resulting in the theft of protected health information (PHI) and personally identifiable information (PII) affecting a substantial proportion of people in America. The company has also acknowledged paying a ransom to the attackers, who subsequently engaged in an apparent exit scam. APT28, attributed to Russia’s GRU, exploited a Windows Print Spooler vulnerability to perform post-compromise activities. Additionally, the US State Department has imposed visa restrictions on individuals involved in the development and sale of commercial spyware. These actions highlight the ongoing cybersecurity challenges faced by organizations and governments.
