Change Healthcare, a subsidiary of UnitedHealth Group since 2022 and its Optum Solutions division, is a payment exchange platform used broadly by healthcare providers and was the victim of a cyberattack on February 21, 2024. Optum reports that once the attack was identified, it disconnected the Change Healthcare platform from its other systems thereby containing the threat. As of 2:20 PM ET on February 23rd, Optum said, “This action was taken so our customers and partners do not need to [disconnect]. We have a high-level of confidence that Optum, United Healthcare and UnitedHealth Group systems have not been affected by this issue.”
Nonetheless, some healthcare providers have opted to actively disconnect themselves from the platform out of an abundance of caution. Given the platform’s role in processing claims, some providers have reported they are unable to submit claims for payment or services at this time. Optum indicated it is continuing to work to restore the “impacted environment” and expected the disruption to continue through at least Friday, February 23. Optum updates on the Change Healthcare cyberattack can be followed here.
Members who experienced a disruption to their claims processing, prior authorization requests, or other issues related to this attack can report them to Nicole Fallon and as appropriate, they will be shared with CMS. If hospice members experience issues with their MAC authorizing the exception, prior authorization requests, or other issues related to this attack can report them to Katy Barnett. Members are reminded that LeadingAge has curated a number of Cybersecurity Resources to assist them in protecting their own systems, including a listing of LeadingAge business partners who can assist members in addressing their cybersecurity needs. An article is here.