• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
  • Skip to footer
  • Jobs
  • Career
    • Cyber Security Training
    • Work from Home
    • Cyber Security Analyst
    • Remote Work – Six Ways to Keep Your Data Safe When Working Remotely
  • Field Guide
  • Newsletter Signup
  • Deals
  • News
AskCyberSecurity.com

AskCyberSecurity.com

Cyber Security News & Information

  • Home
  • Data Privacy
    • Gamers
    • Government Cyber Security
      • Legislation
      • Standards
        • What are the risks of computer security?
        • Medical Cyber Security
    • Social Media
  • Security
    • Data Breaches
    • Scams
    • Malware
  • Software
    • Apps
    • Web Browsers
  • Glossary
    • Cyber Security Acronyms
  • About Ask Cyber Security
    • Authors
    • Contact Us
  • VPN
    • How Do I Know If My VPN is Working?
    • Best Free VPN iPhone
    • Why Use a VPN?
    • NordVPN vs IPVanish
    • Private Internet Access Download
    • Best VPN for Streaming
      • TikTok VPN
    • VPN Porn
    • Computer Security Software – What You Really Need
  • Tutorials
  • ChatGPT
    • Does ChatGPT Save Data?
AskCyber Home » News » Malware » Magellan Health Hit with Ransomware Attack

Magellan Health Hit with Ransomware Attack

2020-05-13 by Keith Harlock

Magellan Ransomware Attack

Healthcare giant Magellan Health Suffers Ransomware Attack Delivered Via Phishing Email

 

Magellan Healthcare reports the company is the victim of a ransomware attack. According to a notice from Magellan, the cyber attack was discovered on April 11. Malware was sent in an email phishing campaign that impersonated a Magellan client on April 6. The ransomware attack began five days later. Hackers exfiltrated certain confidential company and personal information from a corporate server before encrypting files with ransomware.

Data Stolen from The Magellan Ransomware Attack

According to Magellan, the hackers stole login credentials and passwords from some current employees.

  • Name
  • Address
  • Employee ID number
  • Details from IRS W-2 Tax forms like Social Security number
  • Details from 1099 Tax Forms like Taxpayer ID numbers
  • Some Usernames and Passwords

According to a Magellan spokesperson: “In limited instances, and only with respect to certain current employees, the unauthorized actor also used a piece of malware designed to steal login credentials and passwords.” 

READ: How to Avoid Email Phishing Scams

The ransomware attack also caused a network systems outage.

Magellan Health Inc., is a US Fortune 500 managed health care and insurance firm.

So far, Magellan reports that they are unaware of any fraud or misuse of the stolen data. The company did not identify how many people were affected by the data breach. Three years of identity theft protection is being offered to those who were impacted by the malware attack.

Victims of data breaches have several remedies to prevent identity and financial theft. All US service personnel are entitled to limited credit monitoring services as long as they are on active duty. For more robust credit protection or after transitioning to civilian life, service personnel can enroll in credit monitoring and identity theft protection services. Everyone is entitled to one free credit report every year from each of the three major credit reporting bureaus – Experian, Equifax, and TransUnion. If you are denied credit for any reason, you can also obtain a free credit report.

Always monitor your credit cards, bank accounts, or other financial accounts for fraudulent transactions.

Magellan has contracted with third-party cyber security forensics firm Mandiant and reported the attack the US Federal Bureau of Investigations (FBI) The company notice stated that Magellan, “implemented additional security protocols designed to protect our network, email environment, systems, and personal information.”

This is not the first successful cyber attack on Magellan. Last year the company was also compromised. Hackers compromised email accounts on multiple dates exposing sensitive members and provider information.

Filed Under: Malware

About Keith Harlock

Keith has 30 years of experience managing staff for the planning and design of highway, bridge and transportation-related projects and specialty structures. Keith oversees the development of and authors numerous reports on a variety of topics related to transportation engineering and has worked with several key clients on projects related to infrastructure security. Keith is a licensed professional engineer in the State of New York, currently a State Board member of the American Council of Engineering Companies of New York and is a licensed commercial pilot with an instrument rating. He resides in Western New York.


LinkedInTwitter

Primary Sidebar

Subscribe to Our Free Newsletter

We Don't Share or Sell Your Info

Web Browsers

Where Are My Saved Passwords in Chrome?

Google Removes 70 Malicious Browser Add-ons from Chrome Web Store

Firefox 75 Reports Your Browser Settings to Mozilla

Categories

Cyber Security Field Guide

Computer Security While TravelingGet Our Cyber Security Field Guide - Available on Amazon!

Recent Posts

Security Marketing Manager – Remote

Sr. Associate, Cybersecurity Architect – Pfizer

Strategic Customer Success Manager – Cybersecurity – Opportunity for Working Remotely

Top 20 Passwords Leaked on Dark Web

ISU Cybersecurity Leader Job Opening

Cyber Security News

Top 20 Passwords Leaked on Dark Web

… [Read More...] about Top 20 Passwords Leaked on Dark Web

Apple Warns of Actively Exploited Zero-Day Flaw

… [Read More...] about Apple Warns of Actively Exploited Zero-Day Flaw

IRS Stops Facial Recognition System for Online Access

… [Read More...] about IRS Stops Facial Recognition System for Online Access

National Cybersecurity Alliance Announces Data Privacy Week

… [Read More...] about National Cybersecurity Alliance Announces Data Privacy Week

More Cyber Security News

Tags

amazon Android Apple bitcoin China chrome CISA credit card DarkSide DHS DOJ Equifax Europe Facebook facial recognition FBI Firefox FTC games GDPR Google Government hacker identity theft India iPhone Iran IRS LinkedIn Microsoft North Korea PayPal phishing phishing email ransomware REvil Russia smartphone T-Mobile TikTok tutorial VPN WhatsApp WiFi Windows

Government

CBP Looks to Access Airline Passenger Data

FTC Releases Cyber Threat Video Playlist

Malware Found on US Government Funded Phones

UK NCA Reaches Out to Youth to Deter Cybercrimes

More Posts from this Category

Footer

Menu

  • Home
  • About
  • Authors
  • Newsletter Signup
  • PRIVACY POLICY

Search

Why Use a VPN?

NordVPN vs IPVanish VPN Review

NAVIGATION

  • Data Breaches
  • Data Privacy
  • Gamers
  • Scams
  • Malware

MEMBER NJCCIC

New Jersey Cybersecurity & Communications Integration Cell

STAY CONNECTED

  • Facebook
  • Instagram
  • Pinterest
  • YouTube
  • Twitter
  • RSS

Copyright © 2023 · AskCyberSecurity.com · METRONY, LLC

Go to mobile version