A group of US senators, including Senator Elizabeth Warren, a Massachusetts Democrat, have written to the federal government’s lead cybersecurity agency requesting details on its response to a ransomware attack on an insurance company in February that affected much of the country’s health-care system. The attack targeted Change Healthcare, a unit of UnitedHealth Group Inc., resulting in billions of dollars of payments being disrupted and patient medical data being stolen.
In their letter to CISA, the senators inquired about how the agency collaborated with the FBI and other US government entities to address the hack, what information was provided to UnitedHealth regarding the BlackCat hacker group responsible for the breach, the frequency and cost of such attacks, efforts to establish a warning system, and how the payment of ransoms with cryptocurrencies can be addressed. The senators emphasized the importance of understanding the cybersecurity landscape in light of this breach.
The attack on Change Healthcare exposed vulnerabilities that can compromise an entire industry. The breach disrupted payments and jeopardized the financial stability of some clinics. It also potentially impacted UnitedHealth’s profits by up to $1.6 billion. The senators sent their letter just before UnitedHealth’s top executive was scheduled to address the attack in hearings before Congress. UnitedHealth disclosed that it paid a ransom to protect patient data but did not reveal the amount.
A CISA spokesperson declined to comment on the matter as they are still investigating
/cloudfront-us-east-1.images.arcpublishing.com/pmn/2OC7FABYDJDFDJRTL2ATUYRZ3Y.jpg)
