What it is:
A detailed case study analyzing the 2024 ransomware attack on Change Healthcare, one of the largest healthcare data breaches in U.S. history, focusing on attack methods, impact, and cybersecurity implications.
What I did:
Analyzed how the BlackCat ransomware group gained access through stolen credentials and lack of multi-factor authentication, moved laterally within the network, and executed a double extortion attack. Evaluated the widespread operational, financial, and patient-care impacts, and examined systemic risks such as centralized infrastructure and weak monitoring systems. Proposed mitigation strategies including MFA, network segmentation, continuous monitoring, and compliance with updated HIPAA Security Rule standards.
What I learned:
Learned how a single vulnerability can lead to large-scale national disruption, especially in critical sectors like healthcare. Gained insight into ransomware tactics such as lateral movement and data exfiltration, as well as the importance of foundational security controls like MFA. Also developed an understanding of how cybersecurity failures can directly impact patient care, financial stability, and public trust.