Change Healthcare Ransomware Attack

About

The Change Healthcare ransomware attack, detected on February 21, 2024, was a significant cyber incident perpetrated by the BlackCat/ALPHV ransomware group. This attack disrupted operations and stole up to 6TB of sensitive data, including personal information and medical records. The breach led to a non-verified ransom payment of $22 million, aimed at preventing the public release of stolen data. Change Healthcare plays a crucial role in processing healthcare claims and managing clinical criteria, making the attack's impact substantial across the U.S. healthcare system. The attack resulted in widespread disruptions to healthcare services, affecting billing, cash flow, and patient care. It led to significant financial losses for both Change Healthcare and the broader healthcare industry. UnitedHealth Group, Change Healthcare's parent company, incurred costs exceeding $1 billion. The incident highlighted vulnerabilities in cybersecurity and the need for robust protective measures. The breach affected an estimated 190 million individuals, making it one of the largest healthcare data breaches in history. Despite the ransom payment, the stolen data remains in the hands of cybercriminals, posing ongoing risks.