Ahead of HHS’ latest updates to its FAQ about the February cybersecurity attack on Change Healthcare, the House Energy and Commerce Health Subcommittee held a hearing on April 16 entitled, “Examining Health Sector Cybersecurity in the Wake of the Change Healthcare Attack,” focused on oversight of the federal and private sector response to the Change Healthcare cybersecurity incident, the availability of resources to enable hospitals and other providers to address cybersecurity goals, and whether additional federal policy changes are needed to reduce cybersecurity risks in the health care sector. Subcommittee Chairman Brett Guthrie (R-Ky.), Committee Chair Cathy McMorris Rodgers (R-Wash.), Subcommittee Ranking Member Anna Eshoo (D-Calif.) and Committee Ranking Member Frank Pallone (D-N.J.) all pledged to work with the Department of Health and Human Services to continue to assess damage and look at adopting additional cybersecurity measures to protect our health care systems. The subcommittee expressed frustrations that UnitedHealth Group did not send a representative to the hearing. Other concerns raised at the hearing included impact on patient care, patient data privacy, and the large concerns of health care consolidation which pose national security risks.
NCPA
