Change Healthcare Cyberattack Class Action Lawsuit

The Change Healthcare cyberattack disrupted healthcare systems nationwide and delayed payments of millions of dollars to providers, causing them harm.  

In March 2024, following this massive data breach, Gibbs Mura filed a class action lawsuit for providers against Change Healthcare Inc.  

The class action lawsuit seeks to recover money for providers who were harmed by cyber attack.  

Change Healthcare, a division of UnitedHealth Group, is the largest healthcare payment processor in North America, handling about 15 billion transactions each year and one in three patient records. The attack affected patients, hospital systems, physicians, clinical social workers, and private and government-owned pharmacies.  

Medical providers said they were:  

• Unable to pay employees or bills  

• Unable to check patient eligibility for treatment or verify insurance coverage 

• Unable to receive reimbursement for services provided  

• Facing major cash flow issues and revenue loss  

A March 15, 2024 survey by the American Hospital Association found that  94% of hospitals experienced financial impact following the attack, with 60% losing $1 million or more per day. 

Dr. Purvi Parikh, an allergist and immunologist in New York City, told CNBC that her practice hadn’t been able to receive reimbursement from insurers for patient visits, which  made it difficult to pay for operational expenses, calling the situation a “mess,” and “big stressor.”   

Medical providers who have been harmed by the cyberattack should contact an attorney for a free and confidential consultation to learn more about their rights and options.   

Gibbs Mura partner Rosemary Rivas was quoted by Axios in an article  about the harm that the Change Healthcare cyberattack had on patients, and our firm’s work to fight on their behalf. For over two decades, Ms. Rivas has represented consumers and businesses harmed by companies for negligence and other wrongful conduct. She regularly speaks on matters relating to complex litigation and has been repeatedly recognized for her work on behalf of her clients.  

Gibbs Mura partner David Berger has represented consumers in some of the largest and most influential privacy and data breach cases in the country and has repeatedly obtained record-setting settlements.  He frequently speaks at conferences on data breach cases and other class action topics. David is a former Chair of the American Association for Justice’s Consumer Privacy and Data Breach Litigation Group.  

Gibbs Mura is a nationwide leader in class action lawsuits seeking to hold companies accountable for large-scale data breaches.  It has prosecuted some of the largest privacy cases throughout the country, and the firm’s attorneys have received numerous awards for their privacy and data breach work including “Cybersecurity & Privacy MVP,” “Top Cybersecurity and Privacy Attorneys Under 40,” and “Titans of the Plaintiffs Bar.” 

The firm achieved a historic $1.5 billion settlement from Equifax in 2019, on behalf of 147 million consumers whose social security numbers and other private data were exposed in a breach.  Described by the court as “the largest and most comprehensive recovery in a data breach in U.S. history by several orders of magnitude,” the settlement also required Equifax to spend over $1 billion in data security technology and to make comprehensive security reforms.  Previously, the firm negotiated a $115 million settlement in the Anthem data breach, the largest data breach settlement at the time, after approximately 80 million personal records were compromised in a massive data breach of health insurance giant.