Following the detrimental cyberattack that impacted UnitedHealth-owned Change Healthcare and trickled down throughout the whole industry, Healthcare Dive recently conducted a Q&A with NetSPI’s Managing Director, Phil Morris. The piece discusses how healthcare organizations can recover from cyberattacks and what they must do to protect themselves going forward. Read the preview below or view it online


In February, a massive cyberattack at UnitedHealth-owned Change Healthcare shut down many of the financial operations of healthcare organizations.

The industry is still recovering. Providers have had difficulty receiving payments, verifying coverage and sending prior authorization requests. The CMS has released guidance on payment flexibilities to provide assistance to providers affected by the Change outage.

The attack impacted Change’s claims clearinghouses as well as its pharmacy network. In a recent earnings call, UnitedHealth executives said that, although most of Change’s operations have been resumed, the company shouldn’t expect to get back to “expected service levels” until 2025.

Healthcare Dive spoke with two cyber experts — Phil Morris and Chad Peterson, both managing directors at cybersecurity firm NetSPI — about how healthcare organizations can recover from the attack and what they need to do to protect themselves going forward.

You can read the full article at