Submitted 4 days ago by Forumite@lemm.ee to privacyguides@lemmy.one
https://www.techspot.com/news/106504-unitedhealth-updates-2024-data-breach-impact-190-million.html
There is no profit in securing customer data and there is no drawback for the company when data breaches occur. Without regulation, there will never be motivation for companies to give a shit.
They will apologize like Old navy does every few years for sweatshops, claim they really care and promise to improve (they won’t).
What they really mean?
“Enjoy your free year of credit monitoring and fuck off.”
It’s literally this. I worked software for a financial company and we were considered a cost center. It showed in how they cut corners.
On the contrary to drawbacks. It benefits some companies to leak data when partnerships between corporations are made based on data swaps. And the first person to snitch on this practice gets whacked, apparently.
If the US didn’t have idiots for voters we would have a healthy balanced political system and these breaches would come with mandatory jail time for the execs.
There ain’t no “You”, in UnitedHealth
There ain’t no “Me”, in the company
There ain’t no “Us” in the private trust
There’s hardly humans in humanity
CEOs come and go and one just went
The ingredients you got bake the cake that you get
I wonder if they are going to mail their customers a notice of this. I’ve seen nothing but a asshole sticking survey that barely let you criticize them. I tried my hardest.
I got notified of it in the first quarter of last year.
I had already switched insurances because all my providers stopped accepting UHC because THEY WEREN’T PAYING THE FUCKING PROVIDERS
6-8 months before they even start processing claims. MetLife is the same.
I’ve never been a UMH customer, but about 7 months after the breach happened (November), I got a letter from the company handling customer complaints for Change Healthcare, telling me an unbeknown amount of my medical and or financial information was leaked to unknown parties via some unknown method. If I had questions, I could call the company handling customer complaints.
When I called to ask how Change came to be in possession of my medical data, that they then lost, and subsequently failed to inform me of the situation within my state’s statutory notification window for having your data hacked, the representative told me they didn’t know, and would not be able to find out what company had entrusted them with my data.
I just went back online, no secure messages. Nothing. I don’t know if NY has any laws to help me but i will be calling today. I’m bored and i feel like being a major PITA to them. I have some good friends whose parents are retired lawyers and they love giving me questions to ask.
There’s a young computer wiz out there who could fix their problems luigi-dance
No multifactor authentication? They must be self insured for cyber because no carrier would have them without MFA.
Or wanna bet it was some exec’s account who would have fired people for making his life inconvenient, but somehow now it’s going to be rogue engineers?
JustARegularNerd@aussie.zone 4 days ago
“The hackers gained initial access using a stolen account credential that lacked multi-factor authentication security, according to UnitedHealth.”
Absolutely unacceptable. I might be easier to forgive them if some zero day was used, but that’s so easily preventable.
That account presumably had some level of privileges, the policy should have been to enforce MFA, and if the account was inactive, disable it until the user needs it at which point set up MFA again.
homesweethomeMrL@lemmy.world 4 days ago
190 Million person class action.
synae@lemmy.sdf.org 4 days ago
In 8 years you’ll get a visa gift card with 12 cents on it