UnitedHealth Data Breach Exposed by ALPHV/BlackCat

The ransomware group ALPHV/BlackCat published a blog entry on Wednesday that revealed personal information regarding cyberattacks that affect medical facilities such as hospitals and pharmacies nationwide. This relates to Change Healthcare, a part of UnitedHealth Group (UHG).

A recent article states “The US healthcare company is singled out in the 2200-word ALPHV/BlackCat document for lying about the extent of the breach’s actual harm and for withholding information about the amount of sensitive data that was compromised.

Blackcat Crticizes Businesses for Link

On Wednesday afternoon, ALPHV commented on its private leak site. The organization criticize the California-based business for asserting that the attack was first linked to a nation-state actor and  “solely relates” to Change Healthcare alone.

When UHG disclosed the intrusion on February 21st, it did so in its initial 8K breach notice form with the Securities and Exchange Commission (SEC).

“Two falsehoods in one phrase,” said ALPHV, claiming UHG only backed down after the organisation threatened to come forward. Additionally, the gang declares it possesses over 6T of “highly selective data” retrieved from Change Healthcare systems.

Shocking Report: Healthcare Industry Faces Massive Financial Setback

Several US pharmacy stores and specific medical facilities encountered setbacks as a result of Change Healthcare being compelled to disconnect its systems to control the compromise. UHG stated in its most recent report on Tuesday that, while it works to restore systems, it has given providers and chemists “effective solutions.”

“During the last seven years, attacks involving ransomware against US healthcare providers have cost almost $80 billion,” says Jon Miller, CEO and co-founder of Halcyon, an anti-ransomware startup. According to Miller, “ransomware attackers continue to victimise healthcare providers considering this industry generally lacks the appropriate funds and staff to sustain an adequate security posture.

Massive Data Theft Puts Millions of Users in Danger

In addition to basic fraud and email spam, the corporation states “any individual with basic reasoning skills can comprehend what harm has been inflicted.  As this has an impact on sensitive data of the affected clients. A wide range of significant American medical organisations, including Medicare, Tricare, CVS-CareMark, Loomis, HealthNet, and MetLife, is unveil by the group as potential victims to the hack.

Healthcare systems are a dangerous target for ransomware gangs because of the large amount of sensitive patient data they store. The implications might be severe, according to AttackIQ’s Chapter Lead for Adversary Research Team Andrew Costis.”Criple organisational operations compromise patient health and safety,” according to Costis.