Change Healthcare Archives

HHS updates a free risk tool to help hospitals size up their cybersecurity exposure

HHS has updated its free RISC 2.0 toolkit with a new cybersecurity module, asking hospitals to assess digital threats alongside hurricanes, power failures and other hazards.

3 hours ago By Tim Starks

(Graphic by Shanima Parker / Scoop News Group)

Across party lines and industry, the verdict is the same: CISA is in trouble

The agency lost a third of its people in a year. Now industry and lawmakers on both sides say it's unprepared for a potential crisis.

Feb 25, 2026 By Tim Starks

A healthcare worker tends to a patient on a ventilator in the Intensive Care Unit of Baptist Health Floyd on September 7, 2021 in New Albany, Indiana. (Photo by Jon Cherry/Getty Images)

HHS burrows into identifying risks to health sector from third-party vendors

A department official speaking at CyberTalks said HHS is trying to help the sector on finding where those risks are.

Feb 19, 2026 By Tim Starks

Sen. Bill Casssidy, R-La., questions Health and Human Services Secretary Robert Kennedy Jr. during a Senate Finance Committee at the Dirksen Senate Office Building on Sept. 4, 2025. (Photo by Andrew Harnik/Getty Images)

Bipartisan health care cybersecurity legislation returns to address a cornucopia of issues

The bill, first introduced late last year, deals with regulations, training, grants and more.

Dec 5, 2025 By Tim Starks

Stronger cyber protections in health care targeted in new Senate bill

The bipartisan legislation from four senators is aimed at strengthening providers’ cyber defenses and protecting Americans’ health data.

Nov 22, 2024 By Matt Bracken

UnitedHealth Group, Inc. CEO Andrew Witty appears before House Committee on Energy and Commerce Subcommittee on Oversight and Investigations at the Rayburn House Office Building on May 1 in Washington, D.C. (Photo by Matt McClain/The Washington Post via Getty Images)

Change Healthcare breach affected 100 million Americans, marking a new record

The company notified the Health and Human Services Department about the figure this week, the first it has specified.

Oct 25, 2024 By Tim Starks

14,000 medical devices are online, unsecured and vulnerable

Censys cybersecurity researchers find medical devices, login portals, and health records floating online.

Oct 10, 2024 By Christian Vasquez

Sens. Ron Wyden, D-Ore., and Mark Warner, D-Va., talk before a Senate Armed Services Committee hearing in Washington, D.C. on Jan. 10, 2017. Wyden and Warner introduced a bill to require minimum cybersecurity standards in the health care sector on Sept. 26, 2024. (TASOS KATOPODIS/AFP via Getty Images)

Senate bill eyes minimum cybersecurity standards for health care industry

The legislation from Sens. Wyden and Warner comes in the aftermath of the February ransomware attack on Change Healthcare.

Sep 26, 2024 By Matt Bracken

UnitedHealth Group office building — (Photo Courtesy of UnitedHealth Group)

UnitedHealth Group CISO: We had to ‘start over’ after Change Healthcare attack

Steven Martin detailed the work that went into recovering from February’s ransomware attack, emphasizing that the mental toll was the toughest part of all.

Sep 19, 2024 By Greg Otto

Rep. Jason Crow, D-Colo., speaks at a news conference at the U.S. Capitol Visitors Center on May 25, 2023 in Washington, D.C. (Photo by Chip Somodevilla/Getty Images)

Senate bill to protect health care data gets House partner

The Healthcare Cybersecurity Act calls on CISA and HHS to collaborate on defending health facilities from cyber incidents.

Aug 29, 2024 By Matt Bracken