February 28, 2024 at 02:37PM
The BlackCat/ALPHV ransomware gang claims responsibility for a cyberattack on Optum, a UnitedHealth Group subsidiary, causing an ongoing outage on the Change Healthcare platform. They allege stealing 6TB of sensitive data, including medical records, from thousands of healthcare providers and insurance companies. The FBI, CISA, and HHS warned that BlackCat affiliates target U.S. healthcare organizations.
Based on the meeting notes, it is clear that the BlackCat/ALPHV ransomware gang has claimed responsibility for a cyberattack on Optum, a subsidiary of UnitedHealth Group (UHG), resulting in an ongoing outage affecting the Change Healthcare platform. The attack has had a significant impact, with the ransomware gang claiming to have stolen 6TB of data from Change Healthcare’s network, affecting thousands of healthcare providers, insurance providers, and pharmacies.
The stolen data includes sensitive information such as medical records, insurance records, dental records, payments information, claims information, patients’ personally identifiable information (PII), and active U.S. military/navy personnel PII data. The ransomware gang also claims to have stolen source code for Change Healthcare solutions and sensitive information belonging to various partners, including prominent healthcare insurance providers.
It is concerning that the U.S. healthcare sector has been a primary target for the BlackCat ransomware affiliates, with federal agencies warning about the increased risk to organizations in this sector.
The impact of the cyberattack is ongoing, with efforts to restore impacted systems and switch to new electronic claim procedures to address the Change Healthcare issues. Additionally, there are significant financial incentives for identifying and locating the individuals linked to the BlackCat gang’s ransomware attacks.
Please let me know if you need further details or information.