A significant ransomware attack has targeted UnitedHealth Group's health tech subsidiary, Change Healthcare, causing disruptions in hospitals and pharmacies across the United States. The cyber threat actor identified as ALPHV/BlackCat has claimed responsibility for the breach, alleging the theft of sensitive health and patient information belonging to millions of Americans. The attack, which began on February 21, has led to widespread outages at pharmacies, healthcare facilities, and military pharmacies, impacting patient insurance verification and prescription processing.

Change Healthcare, a major processor of prescription medications in the U.S. healthcare system, handles a staggering 15 billion healthcare transactions annually, making it a key player in managing patient records. The ongoing cyberattack has forced Change Healthcare to take many of its systems offline to expel the hackers from their networks, leading to ongoing disruptions in service.

Despite these challenges, UnitedHealth Group confirmed that aside from Change Healthcare, their other entities like Optum and UnitedHealthcare have not been affected by the cyberattack. The company is actively working with law enforcement and cybersecurity experts to investigate the matter and assess the impact on members, patients, and customers.

The cyberattack comes following the recent merger of Change Healthcare with Optum in a multi-billion dollar deal under UnitedHealth Group, amplifying concerns about data security and privacy in the healthcare industry. UnitedHealth Group, a leading health insurance provider in the U.S., serves millions of customers nationwide and has been striving to address the ransomware issue promptly to minimize further disruptions in critical services.

As investigations continue and efforts to mitigate the attack persist, the healthcare industry is grappling with the aftermath of this cybersecurity incident, underscoring the urgent need for enhanced cyber defenses and vigilance in safeguarding sensitive patient data.