NOWCAST WDSU News at 10pm
Watch on Demand
Advertisement

A third of Americans could have had data stolen in big health care hack
By Sean Lyngaas
A third of Americans could have had data stolen in big health care hack
ONE LOCAL PHARMACY IS DEALING WITH THE ATTACK. THOUSANDS OF PHARMACIES NATIONWIDE HAVE BEEN STRUGGLING TO FILL PRESCRIPTIONS BECAUSE OF A CYBER ATTACK ON A MAJOR HEALTH CARE PLAYER AND NOW INDEPENDENT PHARMACIES ARE WORKING TO MAKE SURE THAT THEIR CUSTOMERS HAVE THE MEDICATIONS THEY NEED TO STAY HEALTHY, EVEN IF IT IS A RISK TO THEIR BUSINESS, IT IS OFTEN TIMES VERY SCARY WHENEVER THINGS LIKE THIS HAPPEN, BECAUSE IT’S A BIG RISK ON OUR PART. HOWEVER, WE TAKE THAT RISK TO ENSURE THE PATIENT RECEIVES THE PRESCRIPTIONS. SHANE DOUGHERTY HAS BEEN WORKING AT THE NEW STAUNTON PHARMACY SINCE HE WAS 16 YEARS OLD. NOW HE’S THE OWNER FILLING PRESCRIPTIONS HERE AND AT KEYSTONE PHARMACY IN NEW ALEXANDER, VA. I ACTUALLY HAVE TO WORK THERE IN ORDER TO KEEP THIS BUSINESS AFLOAT. MANY INDEPENDENT PHARMACIES HAVE BEEN STRUGGLING IN RECENT YEARS, AND NOW THIS WEEK, ANOTHER HIT CHANGE HEALTH CARE, A UNIT OF UNITED HEALTH, WHICH PROCESSES PRESCRIPTIONS FOR INSURANCE, WAS HACKED, CAUSING SOME PHARMACIES TO NOT BE ABLE TO FILL PRESCRIPTIONS FOR DOUGHERTY. HE SAYS HIS PHARMACY IS HAVING ISSUES WITH SOME CLAIMS WITH UNITED HEALTH, BUT THEIR MAJOR ISSUE IS BILLING COUPON CARDS. BUT HE’S ENSURING THAT HIS CUSTOMERS STILL GET THEIR MEDICATIONS, GIVING THEM THEIR MEDICATIONS NOW, THEN PLANNING ON BILLING INSURANCE LATER. IT’S ALSO RISKY IS YOU’RE GOING TO PROCESS A CLAIM AND ARE YOU WHENEVER THE INSURANCE IS BACK UP AND RUNNING, ARE WE ACTUALLY GOING TO GET PAID WHAT WE SHOULD GET PAID FOR THAT PRESCRIPTION? AND WHILE THE IMPACT TO HIS BUSINESS IS SOMEWHAT MINIMAL, KEYSTONE PHARMACY IS HAVING MAJOR ISSUES. WE WERE UNABLE TO PROCESS PROCESS ANY CLAIMS TO EXPRESS SCRIPTS, WHICH IS THE MAJOR PAYER IN OUR AREA. SO THAT ACTUALLY INCLUDES UPMC AND HIGHMARK CLAIMS. BUT IT DOES LOOK LIKE THE ISSUE WITH THE ATTACK MAY. BE COMING TO AN END SOON. IN A STATEMENT LATE THIS AFTERNOON, OPTUM SOLUTIONS RELEASED AN UPDATE ON THE ATTACK, IN PART SAYING WE’RE WORKING ON MULTIPLE APPROACHES TO RESTORE THE IMPACTED ENVIRONMENT AND WILL NOT TAKE ANY SHORTCUTS OR TAKE ANY ADDITIONAL RISKS AS WE BRING OUR SYSTEMS BACK ONLINE. THE COMPANY WENT ON TO SAY THAT TH
Advertisement
A third of Americans could have had data stolen in big health care hack
By Sean Lyngaas
A third of Americans may have had their personal data swept up in a February ransomware attack on a UnitedHealth Group subsidiary that disrupted pharmacies across the U.S., UnitedHealth CEO Andrew Witty estimated in testimony to Congress on Wednesday.It will likely take “several months” before UnitedHealth is able to identify and notify Americans impacted by the hack because the company is still combing through the stolen data, Witty said in written testimony.Watch the report above on the February attackIn hours of hearings in the Senate and House Wednesday, Witty apologized to patients and doctors, admitted that hackers broke into the subsidiary through a poorly protected computer server and confirmed that he authorized a $22 million ransom payment to the hackers.The testimony shows that the scope of what experts consider to be the most significant health care cyberattack in U.S. history is even bigger than previously known. And the hacking incident has led some lawmakers to call for cybersecurity regulations for health care companies.The February ransomware attack paralyzed computers that Change Healthcare, the UnitedHealth subsidiary, uses to process medical claims across the country. Health providers were cut off from billions of dollars in payments, according to one hospital association, and some health clinics told CNN they were close to running out of money. The Department of Health and Human Services is investigating whether UnitedHealth complied with federal law in protecting patient data.More than two months since the ransomware attack, Witty touted the company’s recovery by rebuilding computer systems and getting insurance claims flowing to “near-normal” levels. But, he said the process for identifying and notifying Americans affected by the hack was cumbersome partly because data files were compromised in the incident.In the hearing, multiple lawmakers asked if UnitedHealth and Change Healthcare, which processes about 15 billion health care transactions annually, controlled an outsized portion of the U.S. health sector, leaving the sector vulnerable to hacks and other disruptions.“Your revenues are bigger than some countries’ GDP,” Sen. Marsha Blackburn, a Tennessee Republican, told Witty. “And how in heaven’s name did you not have the necessary redundancies so that you did not experience this attack and find yourself so vulnerable?”UnitedHealth has blamed its hack on a notorious criminal group called ALPHV, or BlackCat, that the Justice Department says has been responsible for ransomware attacks on victims around the world.The FBI generally discourages victims to pay a ransom because it can fuel more ransomware attacks. But UnitedHealth is one of multiple major U.S. firms that have made multimillion-dollar ransom payments to try to recover stolen data or get systems back online. Colonial Pipeline, a pipeline operator that transports fuel to the East Coast, paid a $4.4 million ransom in 2021 after a Russian-speaking ransomware group disrupted the pipeline operations for days.UnitedHealth has said it paid the ransom “as part of the company’s commitment to do all it could to protect patient data from disclosure.”But lawmakers on Wednesday said they would keep the pressure on the company to get to the bottom of what personal health information was accessed.“Americans are still in the dark about how much of their sensitive information was stolen,” Sen. Ron Wyden, an Oregon Democrat who chairs the finance committee, lamented.

A third of Americans may have had their personal data swept up in a February ransomware attack on a UnitedHealth Group subsidiary that disrupted pharmacies across the U.S., UnitedHealth CEO Andrew Witty estimated in testimony to Congress on Wednesday.

It will likely take “several months” before UnitedHealth is able to identify and notify Americans impacted by the hack because the company is still combing through the stolen data, Witty said in written testimony.

Advertisement

Watch the report above on the February attack

In hours of hearings in the Senate and House Wednesday, Witty apologized to patients and doctors, admitted that hackers broke into the subsidiary through a poorly protected computer server and confirmed that he authorized a $22 million ransom payment to the hackers.

The testimony shows that the scope of what experts consider to be the most significant health care cyberattack in U.S. history is even bigger than previously known. And the hacking incident has led some lawmakers to call for cybersecurity regulations for health care companies.

The February ransomware attack paralyzed computers that Change Healthcare, the UnitedHealth subsidiary, uses to process medical claims across the country. Health providers were cut off from billions of dollars in payments, according to one hospital association, and some health clinics told CNN they were close to running out of money. The Department of Health and Human Services is investigating whether UnitedHealth complied with federal law in protecting patient data.

More than two months since the ransomware attack, Witty touted the company’s recovery by rebuilding computer systems and getting insurance claims flowing to “near-normal” levels. But, he said the process for identifying and notifying Americans affected by the hack was cumbersome partly because data files were compromised in the incident.

In the hearing, multiple lawmakers asked if UnitedHealth and Change Healthcare, which processes about 15 billion health care transactions annually, controlled an outsized portion of the U.S. health sector, leaving the sector vulnerable to hacks and other disruptions.

“Your revenues are bigger than some countries’ GDP,” Sen. Marsha Blackburn, a Tennessee Republican, told Witty. “And how in heaven’s name did you not have the necessary redundancies so that you did not experience this attack and find yourself so vulnerable?”

UnitedHealth has blamed its hack on a notorious criminal group called ALPHV, or BlackCat, that the Justice Department says has been responsible for ransomware attacks on victims around the world.

The FBI generally discourages victims to pay a ransom because it can fuel more ransomware attacks. But UnitedHealth is one of multiple major U.S. firms that have made multimillion-dollar ransom payments to try to recover stolen data or get systems back online. Colonial Pipeline, a pipeline operator that transports fuel to the East Coast, paid a $4.4 million ransom in 2021 after a Russian-speaking ransomware group disrupted the pipeline operations for days.

UnitedHealth has said it paid the ransom “as part of the company’s commitment to do all it could to protect patient data from disclosure.”

But lawmakers on Wednesday said they would keep the pressure on the company to get to the bottom of what personal health information was accessed.

“Americans are still in the dark about how much of their sensitive information was stolen,” Sen. Ron Wyden, an Oregon Democrat who chairs the finance committee, lamented.

Top Picks

Rare find: Father-son lobstermen pull calico lobster from Maine waters
What is the 'American Community Survey' and is it legit?
Clint Eastwood's former California home on sale for $21 million
Meet the Navy veteran skydiving for his 91st birthday