Advertisement
UnitedHealth Group has announced its intention to restore Change Healthcare’s systems by mid-March, aiming to resolve the ransomware attack that has disrupted critical operations across the U.S. health-care system.
The cyber threat actor breached part of Change Healthcare’s information technology network on February 21, according to a filing with the Securities and Exchange Commission. UnitedHealth promptly isolated and disconnected the impacted systems upon detection of the threat. However, this action resulted in interruptions to pharmacy services, payment platforms, and medical claims processes.
In a recent release, UnitedHealth confirmed that electronic prescribing is now fully functional, with payment transmission and claim submissions currently available. The company expects electronic payment functionality to be restored by March 15, followed by the commencement of connectivity testing with its claims network and software on March 18.
UnitedHealth reassured stakeholders that there is no indication of compromise in any other UnitedHealth systems due to the attack. CEO Andrew Witty affirmed the company’s commitment to providing relief for those affected by the malicious attack on the U.S. health system.
Furthermore, UnitedHealth has initiated a temporary funding assistance program to support health-care providers experiencing cash flow challenges resulting from the attack. The program includes advancing funds to providers weekly, with repayment deferred until claims flows return to normal.
Acknowledging that the program may not meet every provider’s needs, UnitedHealth is expanding its scope to include those who have exhausted all available options and work with payers that have chosen not to advance funds during the period of system disruption.
In late February, Change Healthcare attributed the cyberattack to ransomware group Blackcat, also known as Noberus and ALPHV. Blackcat typically steals sensitive data and threatens to publish it unless a ransom is paid. Ransomware attacks pose significant risks to the health-care sector, potentially endangering patient safety when life-saving systems are compromised.
UnitedHealth has not disclosed the nature of the compromised data or confirmed whether the company has paid a ransom to restore its systems. However, the company remains committed to resolving the situation and mitigating the impact on the broader health-care community.