Private and public payers have established multiple resources and funding programs to assist providers and facilities with managing the impact of the recent cyberattack experienced by Change Healthcare, which processes 15 billion health care transactions annually. In late February, the cyberattack against Change Healthcare, which is owned by UnitedHealth Group (UHG), caused a serious breach to patient data and significantly delayed prescriptions, prior authorizations, and payments. As a result, UHG is encouraging providers to check eligibility for its Temporary Funding Assistance Program. UHG has also established a website, Information on the Change Healthcare Cyber Response, as a central location for status updates and additional resources.
Additionally, the Department of Health and Human Services (HHS) has published a resource document to assist providers with recovery efforts and help manage the impact of the attack. The HHS Administration for Strategic Preparedness and Response suggests that all organizations evaluate current cybersecurity safeguards and assess risks, even if they have not been impacted by this cyberattack. The HHS also encourages providers that do not receive timely responses from payers regarding this issue to contact HHScyber@hhs.gov.
The Centers for Medicare and Medicaid Services (CMS) has also acknowledged that providers and suppliers may face significant cash flow problems, as this cyberattack has temporarily prevented some facilities and providers from submitting claims and receiving Medicare payments via the Change Healthcare platform. Therefore, CMS is providing an opportunity for impacted physicians to request advance Medicare payments to help with any cash flow disruptions. Information about this program can be found in the CMS fact sheet.
Questions about these resources can be sent to coding@aasm.org.
