PCMag editors select and review products independently. If you buy through affiliate links, we may earn commissions, which help support our testing.

PCMag UK

Here's What Hackers Stole From Users of Change Healthcare

The UnitedHealth Group subsidiary will finally send official notices to customers whose data was stolen during February's hack.

Michael Kan
 & Michael Kan Principal Reporter

Our team tests, rates, and reviews more than 1,500 products each year to help you make better buying decisions and get more from technology.

Our Expert
LOOK INSIDE PC LABS HOW WE TEST
65 EXPERTS
43 YEARS
41,500+ REVIEWS
(Photo by Jakub Porzycki/NurPhoto via Getty Images)

The hackers behind a February breach of UnitedHealth Group subsidiary Change Healthcare appear to have stolen a huge trove of sensitive information.

Change Healthcare on Thursday published an official notice about the hack, which may have affected "a third" of Americans. The company isn't offering an exact count of the number of affected consumers but admits the hackers stole a "substantial quantity of data."

It's also unclear what kind of data was looted. But the company says the stolen information may include full names, physical addresses, dates of birth, phone numbers, and email addresses. 

Other data that could have been stolen include health insurance information, medical record numbers, diagnoses, test results, along with payment card and banking information. In addition, the hackers may have also taken people’s Social Security numbers, driver’s license ID numbers, and passport numbers.   

“The information that may have been involved will not be the same for every impacted individual,” the company says. “To date, we have not yet seen full medical histories appear in the data review.”

Recommended by Our Editors

Google Will Soon Spot Fake Calls on Supported Android Phones
Google Will Soon Spot Fake Calls on Supported Android Phones
Report Cites Misinformation As Key Threat to Election Security, Doesn't Name the Biggest Offenders
Report Cites Misinformation As Key Threat to Election Security, Doesn't Name the Biggest Offenders
Meta's AI Chatbot Allegedly Helped Hackers Hijack Instagram Accounts
Meta's AI Chatbot Allegedly Helped Hackers Hijack Instagram Accounts
(Credit: Change Healthcare)

In the wrong hands, the stolen information could be easily exploited to conduct identity theft schemes and other scams. The company provided the information as it prepared to send out official data breach notices to affected customers.

Hackers tied to the ransomware group ALPHV took credit for the breach, which allegedly involved 6,000GB of data. UnitedHealth Group then paid the group a $22 million ransom to prevent the data from leaking. But in April, a second hacking group, called Ransomhub, demanded another ransom, alleging it was behind the original intrusion into Change Healthcare. 

It's unclear if UnitedHealth Group paid the second ransom. But even if it did, there’s no guarantee that the hackers kept the data to themselves — especially when selling the information could help them make more money.

In the meantime, Change Healthcare will offer affected users “two years of complimentary credit monitoring and identity protection services.”

About Our Expert

Michael Kan

Michael Kan

Principal Reporter

My Experience

I've been a journalist for over 15 years. I got my start as a schools and cities reporter in Kansas City and joined PCMag in 2017, where I cover satellite internet services, cybersecurity, PC hardware, and more. I'm currently based in San Francisco, but previously spent over five years in China, covering the country's technology sector.

Since 2020, I've covered the launch and explosive growth of SpaceX's Starlink satellite internet service, writing 600+ stories on availability and feature launches, but also the regulatory battles over the expansion of satellite constellations, fights with rival providers like AST SpaceMobile and Amazon, and the effort to expand into satellite-based mobile service. I've combed through FCC filings for the latest news and driven to remote corners of California to test Starlink's cellular service.

I also cover cyber threats, from ransomware gangs to the emergence of AI-based malware. In 2024 and 2025, the FTC forced Avast to pay consumers $16.5 million for secretly harvesting and selling their personal information to third-party clients, as revealed in my joint investigation with Motherboard.

I also cover the PC graphics card market. Pandemic-era shortages led me to camp out in front of a Best Buy to get an RTX 3000. I'm now following how the AI-driven memory shortage is impacting the entire consumer electronics market. I'm always eager to learn more, so please jump in the comments with feedback and send me tips.

The Best Tech I've Had:

  • My first video game console: a Nintendo Famicom
  • I loved my Sega Saturn despite PlayStation's popularity.
  • The iPod Video I received as a gift in college
  • Xbox 360 FTW
  • The Galaxy Nexus was the first smartphone I was proud to own.
  • The PC desktop I built in 2013, which still works to this day.

Read the latest from Michael Kan

Read full bio