this post was submitted on 01 Jun 2024
25 points (96.3% liked)

Security News

2458 readers
1 users here now

founded 2 years ago
MODERATORS
top 1 comments
sorted by: hot top controversial new old
[–] autotldr@lemmings.world 0 points 5 months ago

This is the best summary I could come up with:


Wyden lambasted UHG in a letter sent to Lina Khan and Gary Gensler, chairs of the FTC and SEC respectively, imploring the regulators to investigate the healthcare company's many failures leading up to the ransomware attack that downed services across the US.

Martin was hired by UHG in 2020 originally as its exec veep of enterprise tech after previously holding the role of acting CEO at GE Digital.

One such critic is Tom Kellermann, SVP of cyber strategy at Contrast Security, who previously told The Register: "I'm blown away by the fact that they weren't using multi-factor authentication.

Wyden went on to say that even with MFA not being deployed across the entirety of UHG's IT estate, it probably isn't the only cybersecurity failing that turned it from an organization that was merely targeted by cybercriminals, to one that was floored by ransomware.

In calling for a full regulatory investigation, Wyden pointed to two historical cases that led to sanctions against companies that were found to have taken a lax approach to data security.

"Accordingly, I urge the FTC and SEC to investigate UHG's numerous cybersecurity and technology failures, to determine if any federal laws under your jurisdiction were broken, and, as appropriate, hold these senior officials accountable."


The original article contains 809 words, the summary contains 208 words. Saved 74%. I'm a bot and I'm open source!