Notice of Data Breach from Change Healthcare: What It Means and What to Do Now

Overview of the Change Healthcare Data Breach

A notice of data breach means an unauthorized party may have accessed information held by Change Healthcare, a company that supports healthcare claims, eligibility checks, payments, pharmacy transactions, and other administrative services. In practical terms, your personal or medical details could be at risk for misuse, including medical or financial identity theft.

Under HIPAA breach notification rules, covered entities and their business associates must inform affected individuals without unreasonable delay when Protected Health Information is compromised. Your letter or email is intended to explain what happened, what was involved, and how Change Healthcare’s healthcare data breach response is helping you protect yourself.

Types of Compromised Data

The exact data varies by person and by system affected. A healthcare incident can involve one or more of the following categories:

• Identity data: name, address, phone, email, date of birth, and other personally identifiable information.
• Insurance and claims data: member ID numbers, group numbers, plan details, claim numbers, dates of service, provider names, and Explanation of Benefits information.
• Protected Health Information: diagnoses, treatment details, medications, procedures, and other clinical context tied to your identity.
• Government identifiers: Medicare, Medicaid, driver’s license, or Social Security number, if on file.
• Financial details: billing or payment information provided to pay premiums or balances (for example, bank account digits), if maintained by the impacted system.

Your notification will typically list the specific data elements that may pertain to you. Use that list to tailor your next steps.

Notification and Communication Process

Most people learn they were affected through a mailed letter to the last known address. Depending on your communication preferences, some may receive secure email. If contact information is incomplete, a substitute public notice may be used. The notice should describe the incident, the types of data involved, what Change Healthcare is doing, and how to reach support.

Legitimate communications will not pressure you to pay a fee or disclose full Social Security or bank details over the phone. If you receive a call, text, or email about the breach, independently verify it using the contact information in your official letter. Treat unexpected requests for one-time codes or passwords as suspicious.

Recommended Actions for Affected Individuals

Take these steps promptly to reduce risk and strengthen patient data security:

• Confirm the notice: Keep the letter, any reference numbers, and the date you received it for your records.
• Enroll in any offered identity theft protection or credit monitoring using the instructions in your notice. Activation codes often expire.
• Place a free, renewable fraud alert with one credit bureau; it will notify the others. Consider a credit freeze at Equifax, Experian, and TransUnion for the strongest protection.
• Review your Explanation of Benefits statements and medical bills closely. Conduct an Explanation of Benefits review to spot unknown providers, duplicate services, or prescriptions you did not receive.
• Set up online accounts (or change passwords) with your health plan, patient portals, and pharmacy benefits manager; enable multi‑factor authentication everywhere.
• Monitor bank, HSA/FSA, and card transactions; set up real‑time alerts for charges, transfers, or profile changes.
• Request your free credit reports and dispute unfamiliar accounts or inquiries immediately.
• Consider an IRS Identity Protection PIN to help prevent tax‑refund fraud, particularly if SSN exposure is indicated.
• Document everything: dates, contacts, case numbers, and screenshots. This speeds data breach remediation if issues arise later.

Understanding Credit Monitoring Services

Credit monitoring alerts you to new inquiries, accounts, or changes on your credit file. Bundled identity theft protection may also include dark‑web surveillance, identity restoration assistance, lost‑wallet support, and limited insurance for eligible expenses incurred during recovery.

Key points to know:

• Coverage scope: Three‑bureau monitoring is more comprehensive than single‑bureau plans. Confirm what your offer includes and how long it lasts.
• Enrollment: Use the activation code from your notice. You will verify your identity and create a secure login.
• Credit freeze vs. lock: A legal freeze is free and regulated; it blocks most new credit checks until you lift it. A “credit lock” is a product feature that may be easier to toggle but is not a substitute for a freeze’s legal protections.
• Limits: Monitoring can’t stop misuse by itself; combine it with freezes, alerts, and vigilant account review.

Reporting and Resolving Suspicious Activity

If you see unfamiliar claims, charges, or accounts, act quickly:

• Health insurance and providers: Call the fraud or member services number to report questionable claims. Ask to correct your record and place a note for heightened verification on future claims.
• Banks and cards: Dispute unauthorized transactions immediately and request new account numbers if needed.
• Credit bureaus: Add or extend a fraud alert (one year) or request an extended alert (seven years) with an identity theft report.
• Law enforcement and identity recovery: File an identity theft report and keep the confirmation for creditors and bureaus. Consider a police report if required by a creditor.
• Medical record accuracy: Contact the provider’s privacy office to request an amendment if someone else’s information appears in your file.

How to Contact Change Healthcare for Support

Use the phone number, support portal, or email address listed in your official notice of data breach. If you did not receive a letter but suspect impact, visit Change Healthcare’s official website by typing the address directly into your browser, then follow the data breach support instructions. Do not use links in unsolicited messages.

When you contact support, have your notice, any activation code, and identification ready. Ask for: confirmation of the data elements involved for you, enrollment help for offered services, and guidance on additional healthcare data breach response steps relevant to your situation.

Bottom line: act promptly, combine credit freezes with monitoring, perform regular Explanation of Benefits reviews, and keep thorough records. These actions, together with Change Healthcare’s remediation resources, provide a strong, layered defense against fraud.

FAQs.

What information was exposed in the Change Healthcare breach?

It varies by person. Your notice should list the specific data elements for you, which may include personal identifiers, insurance and claims details, and certain Protected Health Information. In some cases, government or payment identifiers on file may also be involved.

How will I be notified if affected by the breach?

Most individuals receive a mailed HIPAA breach notification to their last known address; some may receive a secure email. If contact details are incomplete, a substitute public notice may be used. The notice explains what happened, what information was involved, and how to get help.

What steps should I take to protect my identity?

Enroll in any offered identity theft protection, place a fraud alert or freeze your credit at all three bureaus, monitor bank and card activity, and perform a careful Explanation of Benefits review to catch unfamiliar services. Update passwords and enable multi‑factor authentication on health and financial accounts.

Is credit monitoring provided to breach victims?

Yes, breach notices typically include free credit monitoring and identity theft protection for a defined period, along with instructions and an activation code. Enroll by the stated deadline to maximize coverage.

How can I contact Change Healthcare for more information?

Use the contact details in your official notice or navigate directly to the company’s website to locate the data breach support page and hotline. Verify any outreach before sharing personal information, and keep your case or reference number for follow‑up.