February 28, 2024 at 07:38PM
The ALPHV/BlackCat cybercrime gang has claimed responsibility for a ransomware attack on Change Healthcare, impacting pharmacies and hospitals across the US. They allege to have stolen significant sensitive data, but their credibility is questionable. UnitedHealth Group is investigating the incident and coordinating with law enforcement and cybersecurity experts. The healthcare sector has been warned to safeguard against ALPHV’s attacks.
Based on the meeting notes, it appears that the ALPHV/BlackCat cybercrime gang has claimed responsibility for a ransomware attack on Change Healthcare, which has resulted in disruptions to thousands of pharmacies and hospitals across the US. The gang has also made claims about stealing a significant amount of sensitive data from health-care organizations. However, it is important to note that cyber criminals are not reliable sources of information, and their claims should be viewed with skepticism.
UnitedHealth Group, which owns the healthcare IT provider, has stated that it is investigating the incident and working closely with law enforcement and third parties to address the attack. The company also mentioned that it has not yet determined the incident’s impact on its financial condition or operations.
The ransomware gang, ALPHV/BlackCat, has listed Change Healthcare on its leak site and threatened to expose stolen data belonging to various health insurers, medical providers, and pharmacies. The group has been linked to the Russian-speaking Darkside/Blackmatter gang and has been targeting hospitals and healthcare facilities since mid-December 2023.
Furthermore, there have been warnings issued by the FBI, US Cybersecurity and Infrastructure Security Agency, and US Department of Health and Human Services for the healthcare sector to mitigate risks and take actions to safeguard against cyber threats.
It is mentioned that there are speculations about how ALPHV gained initial access to Change Healthcare’s systems, including the exploitation of critical ConnectWise bugs. However, the group has denied these rumors in its communication.
The meeting notes highlight the need for caution when considering information from cyber criminals and the importance of taking proactive measures to protect against cyber threats in the healthcare sector.