On September 1, 2023, UnitedHealthcare notified individuals across the country of a recent data breach after an unauthorized party was able to access a UHC broker portal. In this notice, UHC explains that the incident resulted in an unauthorized party being able to access consumers’ sensitive information, which includes their names, member ID numbers, plan types, and counties and states of residency. Upon completing its investigation, UHC began sending out data breach notification letters to all individuals whose information was affected by the recent data security incident.

If you received a data breach notification from UnitedHealthcare, it is essential you understand what is at risk and what you can do about it. A data breach lawyer can help you learn more about how to protect yourself from becoming a victim of fraud or identity theft, as well as discuss your legal options following the UnitedHealthcare data breach. For more information, please see our recent piece on the topic here.

What Caused the UnitedHealthcare Breach?

The UnitedHealthcare data breach was only recently announced, and more information is expected in the near future. However, a UHC spokesperson recently provided a statement to various news outlets confirming the breach. According to these sources, on December 29, 2022, UHC discovered that an unauthorized party was able to access a UHC broker portal. This provided the unauthorized party with access to certain parts of UHC’s business.

In response, UHC notified law enforcement, coordinating an investigation into the incident in hopes of determining what, if any, consumer information was compromised as a result.

The UHC investigation confirmed that an unauthorized party accessed information from the UHC broker portal while attempting to divert funds intended for agents and/or brokers. Through this investigation, UHC was able to determine that the unauthorized party gained access to personal information of UHC members between the dates of December 1, 2022, and January 25, 2023.

After learning that sensitive consumer data was accessible to an unauthorized party, UnitedHealthcare reviewed the compromised files to determine what information was leaked and which consumers were impacted. While the breached information varies depending on the individual, it may include your name, member ID number, plan type, and county and state of residency.

The company’s most recent statements indicate that UnitedHealthcare has already or will shortly begin to send out data breach letters to anyone who was affected by the recent data security incident. These letters should provide victims with a list of what information belonging to them was compromised.

More Information About UnitedHealthcare

United Group Incorporated is a large insurance company based in Minnetonka, Minnesota. UHC provides insurance services under “UnitedHealthcare” and healthcare products under the name “Optum.” UHC is the largest insurance company, based on annual premiums, and the eleventh largest company in the world. UnitedHealthcare employs more than 125,000 people and generates approximately $249 billion in annual revenue.