Description: The company experienced a data breach after filing official documents with the Attorney General of Texas. The breach resulted in the names, addresses, health insurance information, and medical information being compromised. Leaked healthcare data was indeed protected healthcare information. They had sufficient information about a patient to carry out healthcare identity fraud.

Description: UnitedHealth Group Inc. experienced a substantial cybersecurity breach at its Change Healthcare unit, leading to significant financial repercussions. The breach resulted in immediate response costs and broader business disruption, totaling approximately $872 million in the first quarter, with projections of the total pre-tax cost reaching between $1.35 billion and $1.6 billion. Additionally, UnitedHealth is allocating $800 million as claims reserves, to address potential claims from providers due to interrupted services since the breach was reported on February 21. The breach has affected both the network security of Change Healthcare and the continuity of services to providers and partners.

Description: UnitedHealth Group, a health insurance company, reported significant financial implications due to the Change Healthcare cyberattack, with estimated costs between $2.3 and $2.45 billion for 2024. This cyberattack has not only led to direct response costs but also necessitated substantial financial support for healthcare providers. Despite the breach, UnitedHealth managed revenue growth, signaling resilience amidst the cyber incident.

Description: The Change Healthcare data breach in February 2024 significantly impacted over 100 million individuals, marking the largest-ever healthcare data breach in the US. An extensive cyber attack disrupted IT operations, affecting numerous applications, pharmacies, and healthcare providers. Sensitive personal and medical information such as names, Social Security numbers, and treatment details were compromised. The incident led to substantial costs, with UnitedHealth Group reporting $1.1 billion in related expenses. Despite ransom payments, issues with the hacker group BlackCat/ALPHV and subsequent attempts by RansomHub to extort the company exacerbated the situation.

Description: The CEO of UnitedHealthcare, Brian Thompson, was tragically shot and killed in New York City. The suspected shooter, Luigi Mangione, was arrested shortly thereafter. Police found evidence suggesting motivations related to healthcare system criticisms. Bullet casings at the scene had words inscribed that imply dissatisfaction with health insurance coverage processes. Authorities also found a manifesto carried by Mangione that condemned healthcare companies for prioritizing profits over care. This event has led to a significant impact on UnitedHealthcare’s reputation, with potential financial implications due to the loss of its CEO and the adverse publicity surrounding the circumstances of his death.

Description: The Change Healthcare data breach due to a ransomware attack has introduced significant disruptions across the healthcare sector, with UnitedHealth, the parent company, estimating potential costs to be around $1.6 billion. The breach prompted concerns about reporting responsibilities under HIPAA, with provider organizations urging the Office for Civil Rights for clarity and a declaration of sole responsibility resting with Change Healthcare for breach notifications. UnitedHealth has offered support and to undertake notification responsibilities, yet provider organizations seek OCR validation to ensure legal compliance falls on UnitedHealth Group/Change Healthcare as the affected covered entity.

Description: The Change Healthcare data breach, reported to have affected 190 million individuals, has become the largest healthcare-related cybersecurity incident of 2024. After initial reports in July, an additional 90 million victims have been identified, significantly increasing the breach's magnitude. The financial repercussions are substantial, with UnitedHealth Group, Change Healthcare's parent company, incurring costs of $3.1 billion, as disclosed in their financial results. The breach is attributed to the ransomware group ALPHV/Blackcat. In the aftermath, several healthcare organizations have commenced litigation against UnitedHealth Group, highlighting the breach's far-reaching impact on the healthcare industry and its patrons.

Description: UnitedHealth Group, parent company of Change Healthcare, reported a cyber-attack affecting 190 million individuals, an increase of 90 million from initial reports. As one of the largest healthcare payment processors, this incident is the most severe healthcare data breach of 2024. The breach, perpetrated by ransomware group ALPHV/Blackcat, led to substantial financial consequences with costs reaching $3.1 billion, according to the company's financial results. This breach has not only compromised the personal information of millions but also resulted in multiple lawsuits against UnitedHealth Group.

Description: The California Office of the Attorney General reported that UnitedHealthcare experienced a data breach affecting individuals' health information. The breach was detected on December 29, 2022, and it involved unauthorized access to the UHC broker portal, affecting information from December 1, 2022, to January 25, 2023. The breach potentially exposed first and last names, member ID numbers, plan effective dates, and other plan-related information, but not Social Security numbers or financial account information.

Description: The California Office of the Attorney General reported a data breach incident involving OptumRx on April 8, 2016. The breach occurred on March 16, 2016, when an unencrypted laptop belonging to a vendor was stolen in Indianapolis, Indiana, potentially exposing names, addresses, health plan information, prescription drug details, and in some cases, dates of birth. Approximately UNKN individuals were affected, and no financial information was compromised.

Description: The Washington Attorney General's Office reported a data breach involving Change Healthcare Inc. on April 18, 2025. The breach, which occurred between February 17 and February 20, 2024, potentially affected approximately 3,175,442 individuals, with compromised data including personal and health information. This incident highlights the significant impact of data breaches on healthcare organizations, where the loss of sensitive information can have severe consequences for both the organization and the affected individuals.

Description: On January 28, 2013, the California Office of the Attorney General reported a data breach involving RR Donnelley, which included the theft of an unencrypted computer containing personal information of UnitedHealthcare members. The specific date of the breach is unknown, but it occurred sometime between the second half of September and the end of November 2012. The information potentially compromised includes names, addresses, and Social Security numbers, and approximately 2003 health benefit plan members were affected.

Description: The California Office of the Attorney General reported a data breach involving UnitedHealth Group on March 30, 2012. The breach occurred from June 28, 2011 to December 12, 2011, potentially affecting personal information such as names, Social Security Numbers, and Medicare Healthcare Insurance Numbers, although the total number of individuals affected is unknown.

Description: On August 3, 2024, the California Attorney General reported a data breach involving Change Healthcare Inc. The breach occurred between February 12, 2024, and February 22, 2024, potentially affecting personal information including names, addresses, dates of birth, health insurance data, and Social Security numbers. The number of individuals affected is currently unknown.

Description: Change Healthcare, part of Optum and a subsidiary of UnitedHealth Group, experienced a significant cyber-attack that led to disruptions in prescription issuance. The attack began to surface on February 21, when certain applications became unavailable due to what was later identified as a network interruption caused by a cybersecurity issue. The company took measures to mitigate the impact by disconnecting its systems upon recognizing an external threat. The disruptions have affected the healthcare transactions of approximately one-third of US patients, given the company's substantial role in handling 15 billion transactions annually. This situation underscores the vulnerability of healthcare providers to cyber threats and the potential for such attacks to significantly delay medical treatments and prescriptions, affecting both the company's operations and patient care.

Description: In late February, UnitedHealth Group's subsidiary Change Healthcare suffered a notable cyber incident, causing considerable disruptions within the healthcare system. This breach has impeded healthcare operations nationwide, most critically affecting the ability to submit claims and receive payments. The incident has drawn significant concern from various stakeholders within the healthcare community, raising cash flow issues among hospitals, doctors, pharmacies, and others. To mitigate the impact, the Centers for Medicare & Medicaid Services (CMS) have enacted several immediate measures to assist providers and ensure continued service to patients. The incident emphasizes the critical need for enhanced cybersecurity resilience throughout the healthcare ecosystem and has prompted the Department of Health and Human Services (HHS) to actively engage with federal bodies to provide threat intelligence to the industry and ensure a transparent, effective response to the cyberattack.

Description: The Change Healthcare cyberattack has led to a significant disruption in the claims processing system affecting over 1,850 hospitals and 250,000 physicians. The direct impact has been a staggering $6.3 billion cash flow deficit since the breach, as reported through March 9. The inability to process claims digitally has caused a decline in cash and potential long-term consequences such as medical necessity denials and prior authorization denials due to delayed claims. Healthcare providers are struggling to cope with the manpower required for paper claims and the unsustainable financial pressure during the interim of restoring the compromised system. The lack of adequate action from payers exacerbates the situation, making it critical to reassess cybersecurity measures in the healthcare industry.

Description: Change Healthcare experienced a cyberattack, causing significant service disruption. Health systems relying on its services for medical billing and pre-authorizations were forced to delay procedures and prescriptions, resulting in financial strain, including doctor and nurse salary payment issues, with some pushed towards receivership. The over-reliance on a consolidated service provider highlighted the risk of single points of failure in the healthcare sector, exacerbated by inadequate investment in cybersecurity resiliency within the industry.

Description: The CEO of UnitedHealthcare, Brian Thompson, was fatally shot in an incident involving Luigi Mangione, who was arrested in Pennsylvania. The shooter allegedly left behind bullet casings with words indicating a protest against healthcare insurance claim denials. The perpetrator carried a manifesto critical of healthcare companies' focus on profits over patient care. The case has drawn significant media attention, impacting the company’s reputation and possibly causing a financial setback due to concerns over the safety of its executives, potential legal issues, and the necessity for increased security measures.

Description: UnitedHealth Group faced a cyberattack on Change Healthcare, resulting in substantial financial repercussions projected to cost between $2.3 to $2.45 billion in 2024. This estimate is significantly higher than previous estimates, reflecting increased direct response expenses, financial support initiatives for care providers, and expenses related to consumer notification. Despite the impact of the cyberattack, UnitedHealth's revenue grew to $98.9 billion, indicating resilience in their operational performance.

Description: In February, Change Healthcare suffered a ransomware attack that disrupted its services, impacting cash flow for Medicare providers, including hospitals and pharmacies. The CMS initiated the CHOPD program to alleviate the financial strain on affected parties by distributing over $2.55 billion to Part A providers and more than $717.18 million to Part B suppliers. The swift mitigation efforts by CMS ensured the continued delivery of essential patient care amidst one of the largest cyberattacks targeting the U.S. healthcare sector. Notably, CMS has recouped most of the advance payments, and normal billing processes are now reinstated for providers.

Description: UnitedHealth Group experienced a ransomware attack by the hacking group BlackCat on Feb. 21, leading to severe delays in processing claims and revenue cycle services, which pushed many healthcare providers towards financial distress and potential bankruptcy. Providers have filed lawsuits for cybersecurity negligence, with claims that sensitive data is now with cybercriminals. UnitedHealth Group paid over $2 billion to impacted providers while the status of compromised data and cooperation with the cyber threat actor remains unclear.

Description: Change Healthcare experienced a cybersecurity incident involving AI technologies that potentially exceeded anticipated risks. The event showcased the vulnerability of innovative systems to unforeseen threats, highlighting the lack of preparedness in evolving and securing these technologies. The incident served as a stark reminder that without rigorous testing, proactive strategy, and proper investment in security, the fast-paced adoption of technologies like AI and the reliance on insufficient security measures can lead to substantial losses and threats to data integrity and system reliability.

Description: UnitedHealth Group experienced a ransomware attack on February 21, which disrupted their services including medical claim handling and revenue cycle services. This resulted in severe delays in processing claims, pushing healthcare providers towards financial distress, with some nearly facing bankruptcy. The attack by the group BlackCat forced UnitedHealth to rebuild services and affected providers have started filing lawsuits due to not maintaining adequate cybersecurity measures, with allegations of sensitive information leaks. UnitedHealth has paid over $2 billion to affected providers and the data compromised in the attack remains undisclosed.

Description: UnitedHealth Group, a Minnesota-based health insurance company, reported substantial financial implications due to the Change Healthcare cyberattack, with estimated costs between $2.3 billion to $2.45 billion for 2024. This figure significantly exceeds earlier estimates by over $1 billion. While UnitedHealth has restored most services and provided considerable financial aid to healthcare providers, the cyberattack's repercussions include increased direct response costs and support initiatives, contributing to an adjusted per share impact of $1.90 to $2.05 for the year.

Description: United Health Group encountered severe financial and operational disruptions due to the cyberattack on its subsidiary, Change Healthcare. The attack impaired medical billing and pre-authorization services, causing healthcare procedures to be delayed and prescriptions to be inaccessible. This led to delayed income for healthcare systems, impacting their ability to pay staff and potentially forcing some into financial turmoil. The resultant lack of care and delayed procedures may have affected patient health outcomes.

Description: Following a ransomware attack on February 21, the extent of the impact on Change Healthcare, providers, and patients is being evaluated. Class action lawsuits filed against UnitedHealth Group, Optum, Inc., and Change Healthcare are converging in Nashville's federal court, as proposed by Change Healthcare to streamline proceedings. Healthcare providers faced difficulties in checking insurance eligibility and processing prior authorization requests, disrupting patient care. Restoration efforts for Change Healthcare's products and services were still ongoing as of March 31.

Description: The Optum incident exemplifies the risks of consolidating healthcare systems, where a cyberattack paralyzed medical billing and authorization services, resulting in patients experiencing delays in medical procedures and lack of access to prescription medications. Medical service providers could not bill insurance, leading to financial strain, missed salary payments, and some cases of severe financial difficulties. With a single point of failure due to consolidated services, a large portion of health systems and patient care became vulnerable to cyber threats.

Description: In February 2024, Change Healthcare, a major medical billing processor in the US owned by UnitedHealth, suffered a ransomware attack by ALPHV/BlackCat gang, impacting over 100 million people. The breach involved personal data including phone numbers, addresses, financial information, health records, diagnoses, prescriptions, and treatment details. The company paid a $22 million ransom, but the aftermath saw an increased rate of healthcare-focused cyberattacks, along with lawsuits and significant blowback for compromised security measures.

Description: Change Healthcare, a subsidiary of UnitedHealth, faced a massive cyberattack which disrupted billions of medical claims processing and cost the company $3.1 billion. Dubbed the most significant attack in U.S. healthcare history, it led to extensive disruptions in the healthcare sector. The attack's magnitude and repercussions across interconnected systems underscore its potential to ripple through and impact an entire industry.

Description: Change Healthcare, a major healthcare payment processing firm, experienced a catastrophic data breach affecting 190 million individuals, as of the latest update by UnitedHealth Group, its parent company. This breach resulted in the loss of sensitive data and financial repercussions amounting to $3.1 billion. Initially reported in February 2024, the breach numbers escalated by 90 million by January 2025. Noted as the worst healthcare data breach of 2024, the incident has led to multiple lawsuits against UnitedHealth Group. ALPHV/Blackcat, a notorious ransomware group, was identified as responsible for the attack.

Description: The ransomware attack on Change Healthcare has caused significant disruption within the healthcare sector, with UnitedHealth estimating breach-related costs around $1.6 billion. The breach has hindered financial recovery and operational functionality for providers relying on Change Healthcare's services, leading to a call for transparent reporting obligations and a plea for guidance from the OCR regarding HIPAA breach reporting requirements. This incident has underscored the need for clear communication and responsibility assignment in the aftermath of cyberattacks within the healthcare industry.

Description: UnitedHealth Group, the parent company of Change Healthcare, was affected by a ransomware attack that resulted in substantial operational disruption across the healthcare sector. Costs associated with the breach are projected to reach $1.6 billion. This breach compelled healthcare organizations to seek clarifications on their reporting obligations under HIPAA. While the extent of the compromised personal health information (PHI) is still being assessed, the situation highlights the complex challenges involved in managing and securing sensitive healthcare information in the digital age, alongside navigating the intricacies of legal and regulatory compliance.

Description: The Change Healthcare cyber-attack, acknowledged by parent company UnitedHealth Group, affected approximately 190 million individuals, marking a substantial increase from earlier reports. As one of the largest healthcare payment processing entities in the U.S., Change Healthcare's security breach, with losses totaling $3.1 billion, is considered the most severe healthcare data breach recorded in 2024. Behind this damaging cybersecurity incident is the ALPHV/Blackcat ransomware group, leading to multiple lawsuits against UnitedHealth Group.

Description: Change Healthcare, a subsidiary of Optum Inc and part of UnitedHealth Group, faced a substantial ransomware attack that disabled many of its electronic systems. This disruption halted the ability of thousands of healthcare providers to submit claims and receive payments, causing an estimated $100 million in daily deferred patient care revenue over a period exceeding three weeks. The attack affected various operations, including insurance verification, prior authorization processes, clinical information exchange, and e-prescription services. The aftermath of the attack persisted, with reported continuing challenges and disruptions despite a hefty ransom payment allegedly made.

Description: Change Healthcare experienced a cyberattack leading to widespread disruption of medical billing and pre-authorization services, affecting hundreds of health systems across the United States. The incident resulted in delays in medical procedures, restricted access to prescription medications, financial strains on health systems, and some reportedly facing receivership. The consolidation in healthcare has resulted in fewer alternatives for such services, emphasizing the failures and risks associated with creating single points of failure within critical healthcare infrastructure.

Description: Change Healthcare experienced a ransomware attack in February that resulted in significant cash flow disruptions for Medicare providers and suppliers, including hospitals, pharmacies, and physicians. The Centers for Medicare and Medicaid Services (CMS) responded by launching the Change Healthcare/Optum Payment Disruption (CHOPD) program to provide accelerated and advance payments to affected parties. More than $3.26 billion was disbursed to ensure continued patient care. CMS has recovered the majority of these payments as providers resumed normal Medicare billing. This incident highlights the potential financial and operational impacts of ransomware on the healthcare sector.

Description: Change Healthcare suffered a significant cyber-attack impacting approximately 190 million individuals, a number revised from an earlier report of 100 million in July. As a major healthcare payment processing firm in the US, the breach's scale and the sensitive nature of the compromised data classify it as one of the most severe healthcare data breaches in 2024. The financial repercussions are substantial, with estimated costs reaching $3.1 billion. ALPHV/Blackcat ransomware group has been implicated in the breach. The incident has led to multiple lawsuits against UnitedHealth Group, Change Healthcare's parent company.

Description: The ransomware attack on Change Healthcare reported on February 21st has caused substantial disruption across the healthcare sector, with the breach costs estimated by UnitedHealth, Change's parent company, to potentially reach $1.6 billion. The breach has drastically affected providers relying on Change Healthcare's services, leading to financial distress, with a clear recovery path not yet in sight. The repercussions of the breach have been amplified by the lack of definitive information and guidance on reporting responsibilities, causing unease among affected healthcare providers.

Description: The ransomware attack on Change Healthcare, a component of UnitedHealth Group, reported on February 21, has been notably disruptive within the healthcare industry. This cyberattack is projected to result in financial damages approximating $1.6 billion. The incident has caused considerable perturbation amid providers contending with its extensive repercussions. Recovery efforts are hampered by the lack of clear communication from United Health and Change Healthcare, as providers await definitive instructions from the OCR regarding their reporting duties under HIPAA for this breach.

Description: In February, Change Healthcare/Optum experienced a ransomware attack leading to significant financial and operational disruptions across the U.S. healthcare industry. The Centers for Medicare and Medicaid Services (CMS) initiated the Accelerated and Advance Payment (AAP) Program (CHOPD) to mitigate cash flow problems for affected Medicare providers and suppliers. Over $2.55 billion in accelerated payments were distributed to Part A providers, and more than $717.18 million in advance payments went to Part B suppliers. Recovery efforts by CMS have been effective, with over 96 percent of CHOPD payments recouped and normal Medicare billing resumed.

Description: UnitedHealth faced a significant ransomware attack where its subsidiary, Change Healthcare, was compromised. The attack disrupted pharmacy operations, leading to chaos and a desperate need to fill prescriptions. UnitedHealth ultimately paid $22 million in bitcoin to the ALPHV/BlackCat gang to restore services quickly.

Description: The Washington State Office of the Attorney General reported a data breach involving UnitedHealthcare on August 25, 2023. The breach, which was a ransomware attack discovered on April 17, 2023, affected approximately 1,025 Washington residents and involved compromised information including names, Social Security numbers, dates of birth, health insurance information, and medical information.

Description: In February 2024, Change Healthcare's systems were hit by a ransomware attack, disrupting care across the U.S. and exposing 190 million records. The breach highlighted the vulnerabilities in third-party vendor security and the cascading effects on the healthcare system. The attack caused widespread disruption, financial losses, and exposed sensitive patient data, underscoring the critical need for robust cybersecurity measures in healthcare.