Magellan Health Inc, a Fortune 500 company, announced today that it will be present on the 11th. In April 2020, he became the victim of a ransom attack which resulted in the theft of personal data from one of his company’s servers.
Magellan Health is a commercially managed insurance and medical health insurer ranked 417th on the Fortune 500 list of the largest U.S. companies in terms of total revenue.
Magellan’s customers include health insurers and other managed care organizations, trade unions, employers, military and government agencies, and third-party managers.
Theattackers have entered the Magellansystems.
The 11th. In April 2020, Magellan discovered that he had been the target of a ransom attack. The unauthorized actor gained access to Magellan’s systems after he was killed on the 6th. Magellan SVP & Chief Compliance Officer John J. DiBernardi, Jr. in a Notice of Violation filed with the California Attorney General’s Office.
Immediately after the incident was discovered, Magellan stayed with Mandiant, a cybersecurity company, to help investigate and report the attack to law enforcement agencies.
The investigation showed that the perpetrators of the ransom attack were able to steal and filter certain data from a single Magellan corporate server, including sensitive personal information.
In a few cases, and only among certain active employees, an unauthorized entity has also used malicious software designed to steal credentials, DiBernardi Jr. added.
The filtered files contain personal data such as name, address, employee identification number, and W-2 or 1099 data such as social security number or tax identification number and, in certain circumstances, usernames and passwords.
According to the notification letter sent to the parties involved, Magellan is not aware of any fraudulent attempt or misuse of personal information stolen during the attack.
Magellana Ljiljana Ackley, Vice President of Corporate Communications, has delivered the following official message by calling BleepingComputer.
Recently, Magellan Health was the target of a criminal attack on our network, demanding ransom, resulting in a temporary system failure and the exfiltration of certain confidential business and personal information. We investigate the incident in cooperation with forensic experts, inform our customers, employees, involved parties and, if necessary, the relevant government agencies and cooperate with law enforcement agencies.
Unfortunately, these attacks are becoming more frequent. We take the safety and reliability of our activities and services very seriously. We have taken a number of additional steps to further strengthen our security policy and protocols. We are actively investigating this matter and will continue to provide updated information to those concerned in the course of the investigation.
Previous security incidents
Magellan made a report last year, on the 17th. September and September 27th. November that Magellan Rx Management, National Imaging Associates and Magellan Healthcare, its three subsidiaries, were affected by possible data breaches as a result of phishing attacks.
According to Magellan, the authors had access to employees’ email accounts during various appointments, while the company had access to their email accounts on the 5th and 12th of the month. July uncovered incidents that led to the discovery of protected information about the health of the organization’s members.
The compromised e-mail accounts contain information that could have included the subscriber’s name, date of birth, health plan identification number, health plan information, healthcare provider, diagnosis, medications and authorizations, Magellan said.
In some cases Social Security Numbers (SSNs) were also assigned to members and service providers who used them as taxpayer identifiers (TINs).
The Company believes that the employee may have been the subject of a phishing scam and that the unauthorized access to the email account was intended to send spam. – Magellan’s health
The investigation involved an outside expert who found no evidence that the hackers actually accessed, viewed or attempted to use the information in the employee’s email account, Magellan added.
No compromises or unauthorised intrusions into other companies’ systems with members’ personal information have been discovered.
Update : Magellan’s health certificate has been added.