One year after Change Healthcare cyberattack, AHA report discusses lessons learned and continued need to mitigate risk

Feb 19, 2025 - 03:05 PM

Nearly one year after the cyberattack on Change Healthcare, the AHA released a report highlighting the continued need for health care organizations to strengthen cybersecurity efforts and mitigate risk.  

“The cyberattack on Change Healthcare in February 2024 disrupted health care operations on an unprecedented national scale, endangering patients' access to care, disrupting critical clinical and eligibility operations, and threatening the solvency of the nation's provider network,” the report said.  

Among other areas, the report highlights lessons learned, including how third-party cyber risk is the most significant and disruptive cyber threat to health care; actions health care organizations can take to mitigate cyber risk; and resources from the AHA and federal government that can assist organizations with strengthening cybersecurity efforts.
 

Related News Articles

Headline
Agencies warn of Ghost ransomware activity
A joint advisory released Feb. 19 by the FBI, Cybersecurity and Infrastructure Security Agency, and the Multi-State Information Sharing and Analysis…
Headline
Blog: Resources to Protect America’s Rural Hospitals from Cyberthreats
Rural hospitals’ limited access to technology, staff and financial resources constrains their ability to defend against the malicious actors behind today’s…
Headline
AHA podcast: A Tiered System of Safety — Committing to Zero Harm with WellSpan Health
In this conversation, Carlos Roberts, M.D., urogynecologist, vice president and chief medical officer of the Women and Children service line at WellSpan Health…
Headline
DOJ announces charges for affiliates of Phobos ransomware group
The Department of Justice Feb. 10 announced charges for Roman Berezhnoy and Egor Nikolaevich Glebov, Russian nationals alleged to be leaders of a ransomware…
Headline
AHA discusses innovation, cybersecurity at digital health conference
The AHA participated Feb. 18 at ViVE, a health care conference in Nashville focusing on digital health technology. Chris DeRienzo, M.D., AHA senior vice…
AHA Cyber Intel
Resources to Protect America’s Rural Hospitals from Cyberthreats
Cyberthreats such as ransomware attacks are not just data-theft or financial crimes, but they also are threat-to-life crimes. And they are not just an IT issue…