Pavan Reddy Vaka

Abstract

In 2015, Anthem Inc., one of the largest health insurance providers in the United States, suffered a massive data breach that compromised the personal information of approximately 78.8 million individuals. This breach, one of the largest in the healthcare industry, was caused by a sophisticated cyberattack attributed to state-sponsored actors. The breach highlighted the vulnerabilities of sensitive healthcare data and the increasing frequency of cyberattacks targeting large organizations. The attack was allegedly carried out using ransomware, which infiltrated the company's network through a phishing email, ultimately compromising a wide range of personally identifiable information (PII), including names, birth dates, Social Security numbers, and employment details. This paper investigates the Anthem Health Insurance breach, exploring how ransomware was used as a weapon in the attack, the tactics employed by cybercriminals, and the broader implications for cybersecurity withi