March 4, 2024 at 04:08PM
ALPHV/BlackCat, responsible for the Change Healthcare cyberattack, received over $22 million in Bitcoin, potentially a ransomware payment. UnitedHealth Group declined to confirm if ransom was paid. Change Healthcare’s systems were affected, disrupting services for 70,000+ American pharmacies and hospitals. The gang may have stolen the $22 million from their affiliates. Affiliates claim to possess sensitive data and issued a warning about working with ALPHV.
Following the meeting notes, the key takeaways are:
– ALPHV/BlackCat gang received over $22 million in Bitcoin as a ransomware payment from Change Healthcare, a provider of IT services to over 70,000 American pharmacies and hospitals.
– The parent company, UnitedHealth Group, declined to confirm whether they paid off the ransomware gang, emphasizing their focus on the investigation.
– The ransomware attack caused disruptions to thousands of locations across the US, impacting services at pharmacies run by CVS and Walgreens.
– ALPHV may have stolen the $22 million from its affiliate crew, leading to concerns of leaked sensitive data from Change and its partners, including Medicare and Tricare, CVS-CareMark, Health Net, Metlife, and Teachers Health Trust.
– The affiliates claimed to have 4TB of critical data and issued a warning to stop dealing with ALPHV.
These takeaways provide a clear understanding of the cyberattack, ransom payment, and the potential risks associated with the stolen data.