HHS Starts Investigation of UnitedHealth’s HIPPA Compliance After Cyberattack

The Department of Health and Human Services has started an investigation into the ransomware attack that targeted insurance group UnitedHealth’s subsidiary Change Healthcare.

According to the announcement released on Wednesday, the investigation will center on assessing the company’s compliance with the Health Insurance Portability and Accountability Act, which established safeguards over health care data.

The ALPHV/Blackcat ransomware group has taken responsibility for the Change Healthcare cyberattack, which has already delayed prescription fillings and caused economic impacts at clinics and other health facilities, Nextgov/FCW reported.

To address the impact of the cyberattack, Senate Intelligence Committee Chair Mark Warner, D-Va., shared plans to introduce legislation to accelerate payments to affected providers and vendors in future incidents.

Cybersecurity has always been a concern for the health care sector. Speaking at the 2022 ViVE event, Lauren Boas Hayes, senior adviser for technology and innovation at the Cybersecurity and Infrastructure Security Agency, emphasized that better communication and threat-sharing capabilities are key to improving the health care sector’s cyber posture.

Sign Up Now! Potomac Officers Club provides you with Daily Updates and News Briefings about Cybersecurity

Join Us Now