Outage in UHIN

Fraudulent Emails

Minor
July 02, 2025 - Started about 13 hours ago
Official incident page

Need to monitor UHIN outages?
Stay on top of outages with IsDown. Monitor the official status pages of all your vendors, SaaS, and tools, including UHIN, and never miss an outage again.
Start Free Trial

Outage Details

Through both our internal alerting, as well as customer inquiry, we are aware that Bill Cox's email (bcox@uhin.org) account has been compromised through a targeted phishing attack. Malicious emails containing fraudulent DocuSign links have been sent from his address. Please exercise extreme caution and do NOT click on any DocuSign links from Bill Cox's email. We are actively investigating and working to resolve this issue.
Components affected
UHIN Real Time EDI Processing UHIN Alerts - Delivered via SFTP UHIN Payer Network UHIN Results Delivery UHIN Customer Support UHIN Alerts - Delivered via Direct UHIN File Tool UHIN Data Source Opt Out Notifications UHIN CHIE Alerts Workflow UHIN VPN Connectivity UHIN PIR Connection UHIN Alerts - MY Workflow UHIN Clinical Portal UHIN CORE Connection UHIN SFTP Connection UHIN Claims Attachments UHIN Federated Query UHIN Prior Authorizations UHIN Data Feeds UHIN Claims UHIN UTRANSEND Portal UHIN EDI Enrollment UHIN Batch EDI Processing UHIN Eligibility
Latest Updates ( sorted recent to last )
MONITORING about 11 hours ago - at 07/02/2025 10:07PM

A fix has been implemented and we are monitoring the results.

INVESTIGATING about 11 hours ago - at 07/02/2025 10:00PM

We want to make you aware of a phishing email that you may have received from one of our employee’s email accounts earlier today.
The email may have appeared to come from Bill Cox and could include suspicious links or unexpected attachments. If you received such an email, please do not click on any links or open any attachments, and delete the message immediately.
We take this matter very seriously and have already taken steps to secure the affected account and investigate the incident. At this time, we have no reason to believe any sensitive data was compromised, but we recommend remaining vigilant and reporting any suspicious activity to our security team or your own security team. If you may have clicked on any links or opened any attachments, please work with your security team immediately.
We sincerely apologize for any inconvenience this may have caused and appreciate your understanding as we work to prevent this from happening again.
If you have any questions or concerns, please don't hesitate to reach out.

INVESTIGATING about 13 hours ago - at 07/02/2025 08:07PM

Through both our internal alerting, as well as customer inquiry, we are aware that Bill Cox's email (bcox@uhin.org) account has been compromised through a targeted phishing attack. Malicious emails containing fraudulent DocuSign links have been sent from his address. Please exercise extreme caution and do NOT click on any DocuSign links from Bill Cox's email. We are actively investigating and working to resolve this issue.

Latest UHIN outages

UHIN Transaction Delivery Delay - about 13 hours ago
ADTs from University Of Utah Health Care are currently delayed. - 6 days ago
Community Notice- PEHP July groups will transition to a new claims system on July 1, 2025 - 8 days ago
Intermountain Alerts Delayed - Status Update - 17 days ago
Utransend is having intermittent issues. - 23 days ago

Be the First to Know When Vendors Go Down

With IsDown, you can monitor all your critical services' official status pages from one centralized dashboard and receive instant alerts the moment an outage is detected. Say goodbye to constantly checking multiple sites for updates and stay ahead of outages with IsDown.

Start free trial

No credit card required · Cancel anytime · 4400 services available

Integrations with Slack Microsoft Teams Google Chat Datadog PagerDuty Zapier Discord Webhook