UnitedHealth: Change Healthcare cyberattack caused $872 million loss

UnitedHealth: Change Healthcare cyberattack caused $872 million loss

April 16, 2024 at 10:28AM

UnitedHealth Group’s Q1 earnings were significantly impacted by a ransomware attack on the U.S. healthcare system, causing a $872 million hit on quarterly earnings of $7.9 billion. The attack’s costs include $593 million in response expenses and $279 million from business disruptions. Additionally, $800 million was allocated to claims reserves due to potential cyberattack effects. The attack prevented billing and claims submissions, resulting in financial impacts and ongoing efforts to assist affected providers and consumers.

Key takeaways from the meeting notes:

– UnitedHealth Group reported an impact of $872 million on its Q1 earnings due to a ransomware attack on the U.S. healthcare system in February.
– Despite the impact, first quarter revenues grew almost $8 billion year over year to $99.8 billion.
– The ransomware attack’s total impact is estimated at $0.74 per share in Q1, with full-year 2024 impacts estimated at $1.15 to $1.35 per share.
– The company reflected an additional $800 million of claims reserves due to the potential for the cyberattack to affect claims receipt timing.
– Cash flows from operations in Q1 2024 were $1.1 billion and were affected by approximately $3 billion due to the company’s cyberattack response actions.
– Change Healthcare is the biggest payment exchange platform used by doctors, healthcare providers, and over 70,000 pharmacies within the United States healthcare system.
– UnitedHealth also has contracts with over 1.6 million health professionals and 8,000 healthcare facilities in all 50 states and is still working on mitigating the cyberattack’s impact on consumers and care providers.
– The ransomware attack was linked to the BlackCat/ALPHV ransomware group, who claimed they stole 6 TB of data during the breach.

Additionally, the meeting notes highlighted the ransomware gang’s exit scam, the U.S. Department of Health and Human Services’ investigation into the data breach, and the ongoing extortion threats from the RansomHub group.

Full Article