Follow Slashdot blog updates by subscribing to our blog RSS feed

 



Forgot your password?
typodupeerror
×
Security

Change Healthcare's Ransomware Attack Costs Edge Toward $1 Billion So Far (theregister.com) 17

UnitedHealth, parent company of ransomware-besieged Change Healthcare, says the total costs of tending to the February cyberattack for the first calendar quarter of 2024 currently stands at $872 million. From a report: That's on top of the amount in advance funding and interest-free loans UnitedHealth provided to support care providers reeling from the disruption, a sum said to be north of $6 billion. In its results for the quarter ended March 31, filed today, UnitedHealth stated that the total impact on the company from the attack in Q1 was $0.74 per share, which is expected to rise to a sum between $1.15 and $1.35 per share by the end of the year.

The remediation efforts spent on the attack are ongoing, so the total costs related to business disruption and repairs are likely to exceed $1 billion over time, potentially including the reported $22 million payment made to the ALPHV/BlackCat-affiliated criminals behind the attack. It's a charge that eclipsed that of casino group MGM, which didn't pay a ransom following an attack on its systems last year, and which faces recovery costs of $100 million to rebuild its systems and paying for the fallout from outages, operational disruptions, allegedly leaked data and more.

This discussion has been archived. No new comments can be posted.

Change Healthcare's Ransomware Attack Costs Edge Toward $1 Billion So Far

Comments Filter:
  • I see it too often. Companies that flirt with disaster, they remind me of 20 year old kids who think they're invincible and the 'bad things' just happen to other people and take risks with security.
    Old out data servers, unpatched systems, not spending anything if they can avoid it for IT infrastructure and security.

    The execs that got the bonus for being thrifty likely have left the scene before the other shoe drops kinda thing.

  • IT security, BCM and DR are a thing you know. Just not at Change Healthcare it seems.

    If a bank leaves open their vault overnight and gets robbed, nobody would think the bank a victim. Same thing happens to the IT of a large enterprises, and suddenly the fuckups are "victims". No. They are not. They fyucked up and tried to do things on the cheap. They were at the very least grossly negligent.

"All the people are so happy now, their heads are caving in. I'm glad they are a snowman with protective rubber skin" -- They Might Be Giants

Working...