Reflecting on the Change Healthcare cyberattack, one year later

The Change Healthcare cyberattack had widespread, unprecedented impacts across the healthcare sector in February 2024 and beyond. What has the sector learned since, and are providers better equipped to handle a similar incident today?

Featuring: Errol Weiss, chief security officer at the Health Information Sharing and Analysis Center (Health-ISAC)

In this episode, we'll cover

• Systemic security challenges that the Change Healthcare cyberattack exposed
• Lessons learned in the year since the Change Healthcare cyberattack, and how the sector has improved its cybersecurity efforts
• Ongoing cybersecurity risks to the healthcare supply chain

and more!

References

Health-ISAC's 2025 Health Sector Cyber Threat Landscape Report https://health-isac.org/health-isac-2025-health-sector-cyber-threat-landscape/

American Hospital Association and Health-ISAC Joint Threat Bulletin: Russian Ransomware Gangs Disrupt Patient Care https://health-isac.org/american-hospital-association-and-health-isac-joint-threat-bulletin/

Understanding the impact of the Change Healthcare cyberattack on providers https://www.techtarget.com/healthtechsecurity/feature/Understanding-the-Impact-of-the-Change-Healthcare-Cyberattack-on-Providers

10 largest healthcare data breaches of 2024 https://www.techtarget.com/healthtechsecurity/feature/Largest-healthcare-data-breaches

HPH Cybersecurity Performance Goals https://hhscyber.hhs.gov/performance-goals.html

To learn more about healthcare cybersecurity, check out our Healthtech Security site.

To watch video clips from the conversation, subscribe to our YouTube channel, @HealthcareStrategies.