AHA expresses concerns with UHG program in response to cyberattack on Change Healthcare

Mar 04, 2024 - 03:02 PM
AHA COmment

UnitedHealth Group’s Temporary Funding Assistance Program “is not even a band-aid on the payment problems you identify,” AHA wrote March 4 in a message to UHG in response to a program the company unveiled March 1 following a cyberattack on UHG’s subsidiary Change Healthcare. Specifically, AHA said the program is only available to an exceedingly small number of hospitals and health systems, and that the terms and conditions of the program are “shockingly onerous.”

“Taken together, the limited eligibility and these one-sided contractual terms severely undermine the intent of this program,” AHA said. “Indeed, we have heard from some hospitals and health systems that these simply are not terms they can accept, especially when their financial future becomes more unpredictable the longer Change Healthcare is unavailable.”

According to Change Healthcare, the company processes 15 billion health care transactions annually and touches 1 in every 3 patient records. These transactions include a range of services that directly affect patient care, including eligibility verifications and pharmacy operations, as well as claims transmittals and payment. All of these have been disrupted to varying degrees over the past several days.

“As we await more information from UnitedHealth Group about how long these effects will last — still no timeline has been announced — the financial consequences for hospitals and health systems will only increase, further affecting patient care,” AHA said. “We need real solutions — not programs that sound good when they are announced but are fundamentally inadequate when you read the fine print.”
 

Related News Articles

Headline
FBI warns of malicious text, voice-messaging campaign impersonating senior U.S. officials
The FBI’s Internet Criminal Complaint Center May 15 released an alert warning of a malicious text and voice messaging campaign involving impersonators…
Headline
AHA blog — 3 Must-know Cyber and Risk Realities: What’s Ahead for Health Care in 2025 
In his latest AHA Cyber Intel blog, John Riggi, AHA national advisor for cybersecurity and risk, examines the state of cyber and physical threats in 2025 as…
Headline
Report: Health care had most reported cyberthreats in 2024 
Health care had more cyberthreats last year than any other critical infrastructure industry, according to the FBI's 2024 Internet Crime Report released April…
Headline
NSA report includes recommendations for OT device security
The National Security Agency April 23 released a report on operational technology systems that includes recommendations for security policies and technical…
Chairperson's File
Chair File: Leadership Dialogue — Cybersecurity in Health Care with John Riggi, AHA’s National Advisor for Cybersecurity and Risk
Public
Cybersecurity and physical threats are unfortunately significant enterprise risks for health care, regardless of size or location. Every hospital, physician…
Headline
CISA releases guidance following reported legacy Oracle cloud breach
The Cybersecurity and Infrastructure Security Agency April 17 released guidance to reduce risks associated with a reported breach of Oracle cloud services.…