‘I’m not getting paid’: Change Healthcare cyberattack disrupts payroll for providers of all sizes

Healthcare providers across the United States are struggling to get paid following the week-long ransomware outage at a key tech unit of UnitedHealth Group, with some smaller providers saying they are already running low on cash.

Large hospital chains are also locked out of processing payments with some absorbing the upfront costs of being unable to collect, according to the American Hospital Association (AHA), which represents nearly 5,000 hospitals, healthcare systems, networks, and other providers.

Reuters could not gauge the full magnitude of the problem, but six small businesses across the United States—five therapists and one laboratory—said they were unable to process claims and were racking up thousands of dollars in overdue payments.

The problems began last week after hackers gained access to UnitedHealth’s Change Healthcare unit, a vital lynchpin in the complex U.S. system for making and clearing insurance claims. It also affected electronic pharmacy refills and insurance transactions, particularly among independents, with some reverting to paper transactions.

“We are 100% down when it comes to billing right now,” said Phil Seubring, legal director at Forensic Fluids, a Kalamazoo, Michigan, lab that does drug testing for doctors’ offices.

“I’m not getting paid,” said Jenna Wolfson, a Felton, California-based clinical social worker who provides therapy to about 30 clients a week. She said she had about $4,000 in claims in limbo. “This could be catastrophic for me and other small-business mental health practitioners.”

The early impact may hit small offices harder, but providers of all sizes will feel the strain if the outage persists, John Riggi, AHA cybersecurity adviser and a former section chief for the FBI’s cyber division, told Reuters.

“Larger, more well-resourced hospitals that have alternate technologies and sufficient cash reserves will be able to sustain the outage initially and on a longer basis,” he said.

Organizations that suffer high-impact ransomware attacks can take as long as 30 days to restore core services and weeks longer to bring back less important functions, Riggi said.

It was unclear whether other clearinghouses could take on additional claims traffic, and hospitals were anxiously waiting for Change to introduce new workarounds, Riggi added.

Other ransomware attacks last year, including on Clorox and MGM Resorts International shut down key systems, hitting customers and wreaking havoc with suppliers. They took weeks to resolve and hurt both companies financially.

“It really depends on the damage that’s been donr . . . and the resources they have available to put towards recovery,” said Cliff Steinhauer, director of information security and engagement at The National Cybersecurity Alliance.

UnitedHealth said it understood the impact the hack has had on payments but did not immediately respond to requests for comment on how it is affecting hospitals with the issue now a week old.

“While ordinary people can still receive medical care and appointments go on as planned, thousands, if not hundreds of thousands, of providers will see their cash flow grind to a halt,” said Dana Hughes, whose family runs a physical therapy practice in Corvallis, Oregon.

She said she was unable to file claims after her software vendor disconnected from Change Healthcare.

“Workarounds are not readily available, and will involve lengthier processing time,” she said. Going with an alternate clearinghouse would cost her $300-$500, plus time.

A United Health spokesperson on Tuesday said claims submissions had returned to pre-disruption levels, noting that many providers can also use alternative clearinghouses to submit claims.

UnitedHealth initially blamed a “suspected nation-state associated cybersecurity threat actor” for the disruption, but sources told Reuters a criminal gang dubbed “Blackcat” or “ALPHV” was responsible.

—Raphael Satter, Christopher Bing, and Patrick Wingrove, Reuters

(Reporting by Raphael Satter and Christopher Bing in Washington, and Patrick Wingrove in New York; additional reporting by Sriparna Roy in Bengaluru; editing by Caroline Humer and Bill Berkrot)

https://www.fastcompany.com/91047940/change-healthcare-cyberattack-disrupts-providers-payroll?partner=rss&utm_source=rss&utm_medium=feed&utm_campaign=rss+fastcompany&utm_content=rss

Creată 1y | 5 mar. 2024, 22:20:02


Autentifică-te pentru a adăuga comentarii

Alte posturi din acest grup

‘His views better have changed since 2012’: How a viral meme account beat the Vatican to the Pope Leo XIV news

White smoke poured from the Sistine Chapel chimney Thursday at 6:07 p.m. local time, signaling the end of the conclave and the election of a new pope to lead the Catholic Church. Cardinal Robert F

8 mai 2025, 23:30:07 | Fast company - tech
X blocks access to jailed Istanbul mayor’s account per Turkey’s request

The social media platform X said Thursday it has blocked access to ja

8 mai 2025, 18:50:08 | Fast company - tech
Coding emerges as generative AI’s breakout star

Welcome to AI DecodedFast Company’s weekly newsletter that breaks down the most important news in the world of AI. You can sign up to receive this newsletter every week 

8 mai 2025, 18:50:06 | Fast company - tech
Instacart CEO Fidji Simo is heading to OpenAI: Here’s what you need to know

The woman behind Instacart’s successful IPO, Fidji Simo, is joining OpenAI’s C-suite.

On Wednesda

8 mai 2025, 18:50:05 | Fast company - tech
Nintendo profits tanked 43% in Q1 but hopes to bounce back with the Switch 2 release

Japanese video-game maker Nintendo on Thursday reported a 43% decline in profit for the fiscal year through March, but promised a turnaro

8 mai 2025, 16:30:11 | Fast company - tech
Thanks to DOGE, Gumroad’s founder has a second job with the VA

Sahil Lavingia has had just three jobs over a 15-year career in tech.

The first was as the second employee of Pinterest. The second was by founding the startup

8 mai 2025, 11:50:06 | Fast company - tech
The real-life risks of predictive policing—and what one city is doing differently

The 2002 sci-fi thriller Minority Report depicts a dystopian future where a specialized police unit is tasked with arresting people

8 mai 2025, 11:50:04 | Fast company - tech