HIPAA Blog

[ Tuesday, April 23, 2024 ]

 

United Healthcare: It's been a bad spring for UHC: their pharmacy order and clearinghouse subsidiary Change Healthcare suffered one of the most impactful cybersecurity events in healthcare, resulting in delayed prescription deliveries and payment processing for providers and plans.  We are now learning that hackers from the AlphV hacker group (also referred to as BlackCat) apparently accessed Change's systems February 12 and began stealing data.  On February 21, AlphV detonated a ransomware bomb that encrypted and froze the bulk of Change's system, basically shutting down Change's claims processing and clearinghouse function, along with its Optum affiliate that processes pharmacy orders.  UHC has now announced that the data was stolen and is now being disclosed by the hackers.

Wired magazine reported that Change paid $22,000,000 in ransom to get the hackers to return or destroy the data.  Now, UHC is announcing that the hackers are disclosing the data anyway.  Who would've thought hackers wouldn't honor their promises?


Jeff [8:20 AM]

Comments: Post a Comment
http://www.blogger.com/template-edit.g?blogID=3380636 Blogger: HIPAA Blog - Edit your Template