Will the Change Healthcare case finally make providers do a business impact analysis?
SC Magazine
|
Summary
The recent cyberattack on Change Healthcare, which is part of UnitedHealth Group, has highlighted significant vulnerabilities in the healthcare sector's approach to cybersecurity. The attack led to the compromise of patient data and resulted in a predicted loss of $1.6 billion for UnitedHealth, though this is not expected to significantly affect their overall financial projections for the year. Despite the financial buffer of larger companies like UnitedHealth, smaller healthcare providers have suffered extensively, facing severe operational and financial challenges similar to those experienced during the COVID-19 pandemic. This incident underscores the critical need for healthcare organizations to conduct thorough business impact analyses and establish robust cybersecurity measures, highlighting the inadequacy of current strategies largely reliant on cyber insurance and the absence of preventive planning.