House Energy and Commerce Health Subcommittee Chair Brett Guthrie Addresses Health Sector Cybersecurity in the Wake of the Change Healthcare Attack

House Energy and Commerce Health Subcommittee Chair Brett Guthrie (R-KY) addressed the pressing issue of cybersecurity in the health sector during a recent hearing in Washington D.C. The hearing, titled “Examining Health Sector Cybersecurity in the Wake of the Change Healthcare Attack,” shed light on the significant disruption caused by a ransomware attack on Change Healthcare, a subsidiary of UnitedHealth.

Guthrie emphasized the importance of hearing from industry experts and healthcare providers, both large and small, about the state of healthcare cybersecurity in the aftermath of the attack. The ransomware attack on Change Healthcare, which took key systems offline, resulted in disruptions to claims processing, payment and billing, and eligibility verifications. This led to patients experiencing delays in accessing care and facing unexpected out-of-pocket costs for medications.

The impact of the attack was felt nationwide, with providers struggling to make payroll and patients facing challenges in receiving necessary care. Guthrie highlighted a personal anecdote of an independent provider in his hometown of Bowling Green who is still dealing with the aftermath of the attack, including staff shortages and uncertainty about compromised sensitive information.

The rise in cyberattacks targeting the healthcare sector has been alarming, with data breaches increasing significantly in recent years. Guthrie pointed out that ransomware attacks, such as the one on Change Healthcare, have resulted in substantial payouts for perpetrators, highlighting the need for stronger cybersecurity measures in the industry.

Guthrie called for proactive measures from the federal government to prevent future attacks, emphasizing the importance of collaboration with industry stakeholders to strengthen cybersecurity defenses. While acknowledging the efforts of the Biden administration in addressing cybersecurity threats, Guthrie stressed the need for continued vigilance to ensure the safety and privacy of patients and healthcare data.

As the healthcare sector grapples with the growing threat of cyberattacks, Guthrie urged for a concerted effort to make the healthcare system a global leader in cybersecurity and patient safety. The hearing served as a reminder of the critical importance of protecting healthcare data and ensuring the continuity of care for patients across the country.