AHA urges Congress to provide support to help minimize further fallout from Change Healthcare attack 

Mar 04, 2024 - 03:01 PM
cybersecurity

The AHA March 4 urged Congress to consider a number of actions to support hospitals’ efforts to care for patients as the entire health care system continues to navigate the effects of the ongoing cyberattack against Change Healthcare.

“This incident demands a whole of government response,” AHA wrote to House and Senate leaders.

In the letter, AHA urged congressional leaders to press upon the Department of Health and Human Services the importance of the need for immediate action with a particular focus on:

•       Directing the Medicare Administrative Contractors to prioritize and expedite review and approval of hospital requests for Medicare advanced payments.
•       Issuing guidance to all payers that outlines expectations that payers will implement periodic interim payments or advanced payments to providers, waive timely filing requirements for claims, extend timelines for appeals, and not deny claims due to lack of authorization and other reasons.
•       Using all power at the HHS Secretary’s disposal to ensure that UnitedHealth Group takes all necessary steps to remedy the situation, including implementing a meaningful financial assistance program and engaging in frequent and forthright communication with providers.

In addition, AHA urged Congress to consider any statutory limitations that may exist for any federal agencies that can assist hospitals at this critical moment.

“We stand ready to work with you, Change Healthcare and its corporate ownership to minimize any further disruption to patient care as a result of this attack and to ensure hospitals and health systems have the resources they need to continue serving their patients and communities,” AHA said. “We urge you to press the Executive Branch for bold, swift action to prevent further fallout and to ensure a complete and fulsome response from UnitedHealth Group.”

Related News Articles

Headline
Microsoft issues security update addressing critical vulnerability impacting Windows server services 
Microsoft has released a security update to address a critical remote code execution vulnerability impacting multiple versions of Windows Server Update…
Headline
2025 Cybersecurity Year in Review, Part Two: Mitigating Third-Party Risk, Ensuring Clinical Continuity and Addressing AI Risk
In part two of a recent blog, AHA National Advisor for Cybersecurity and Risk John Riggi and AHA Deputy National Advisor for Cybersecurity and Risk Scott Gee…
AHA Cyber Intel
2025 Cybersecurity Year in Review, Part Two: Mitigating Third-Party Risk, Ensuring Clinical Continuity and Addressing AI Risk
In part one of this blog, we reviewed the number of cyberattacks the health care field endured this year compared to last; provided an overview of the lessons…
Headline
CISA warns of vulnerability in F5 BIG-IP products
The Cybersecurity and Infrastructure Security Agency Oct. 15 released an emergency directive advising federal agencies to take stock of their F5 BIG-IP…
Headline
AHA blog: 2025 Cybersecurity Year in Review, Part One — Breaches and Defensive Measures
In part one of a new blog, John Riggi, AHA national advisor for cybersecurity and risk, and Scott Gee, AHA deputy national advisor for cybersecurity and risk,…
Perspective
Protecting Patients and Hospitals from Cyberattacks
Public
This week, the FBI issued an urgent warning to all users — including hospitals — of a critical security soft spot within Oracle’s E-Business Suite, stating “…