On February 21, 2024, Change Healthcare began experiencing a cyber security issue. Once aware of the outside threat, UnitedHealth Group took action to disconnect Change Healthcare’s systems to prevent further impact. Lack of access to these electronic systems has been very disruptive to health care practices and facilities. Below are some resources to help practices. For additional information, please reach out to Jessa Barnard at jbarnard@vtmd.org

• Change Healthcare Cyber Response Resources
• HHS HIPAA Change Healthcare Cybersecurity Incident Frequently Asked Questions
• Vermont Medicaid/DVHA, including advanced payment options
• Communications related to Change Healthcare Outage marked with an (!)
• Email address to submit claims submission and payment issues: AHS.DVHAChangeHealthcareServiceOutage@vermont.gov
• Vermont’s Medicare contractor, NGS, including the accelerated payment program for Part A and Part B providers
• Note: CMS/Medicare has announced that it is closing advanced payments due to the Change Healthcare disruption as of July 12, 2024.
• Note: CMS reopened the 2023 MIPS Extreme and Uncontrollable Circumstances (EUC) hardship application due to the Change Healthcare cyberattack. The deadline to apply for an exemption was April 15, 2024.
• BlueCross and BlueShield of Vermont
• Note: At this time, BCBSVT has not restored its direct connection with Change’s systems. See their website for more information regarding alternative clearinghouses.
• MVP
• Cigna

See also additional resources from the American Medical Association.

Please note, some payers are hearing about an increase in fraudulent activity in the wake of the CHC cybersecurity incident. Practices are receiving calls from people posing as “insurers” asking for patient medical records, credit card numbers, and other requests for sensitive information. If there are any concerns or doubts please contact customer service or provider relations for the relevant payer prior to providing any information.