The cyberattack on Change Healthcare has sent ripples through the healthcare industry, affecting major payers like Aetna, Elevance Health, Humana, and Kaiser Permanente. While claims volume has dwindled, prior authorization processes remain intact for some. Aetna is exploring contingency payment options, while Elevance Health adopts a reserving approach. Humana grapples with assessing total medical expenses amid system dependencies, prompting a shift towards alternative services. Kaiser Permanente reassures the integrity of member data but acknowledges potential delays in claims processing. Despite challenges, these payers demonstrate resilience by adapting to alternative processes and mitigating disruptions. Collaboration between stakeholders is essential to fortify defenses and ensure uninterrupted healthcare services.
The recent ransomware attack on Optum’s Change Healthcare has reverberated across the healthcare industry, significantly affecting various payers. While there have been substantial reductions in claims volume from providers, the impact on prior authorization processes has varied. Let’s delve into how four major payers—Aetna, Elevance Health, Humana, and Kaiser Permanente—have been affected by this cyberattack.
Aetna:
Aetna acknowledged the challenge of timely payments to providers across its lines of business and affiliates in a message dated February 27. The payer expressed seriousness about the issue and indicated exploration of contingency payment options, particularly for providers in Medicaid plans. However, Aetna stated it would not relax any prior authorization requirements at the moment. Despite the setback, the company assured providers of alternative processes in place and committed to providing updates if the situation changes.
Elevance Health:
During the TD Cowen Healthcare Conference on March 5, Elevance Health’s Executive Vice President and CFO, Mark Kaye, revealed that the company initially witnessed a 15% to 20% reduction in daily data volume from providers. Currently, the volume is down by approximately 10% relative to normal daily levels. Mr. Kaye mentioned that some providers have begun submitting claims directly to Availity or switched their clearinghouses. Fortunately, prior authorization volumes remain unaffected at Elevance. The company plans to adopt a reserving approach as it awaits claims volume recovery in the first quarter.
Humana:
Humana’s CFO, Susan Diamond, disclosed on March 5 at the TD Cowen conference that about 20% of the company’s medical claims pass through Change Healthcare’s system before reaching the payer. This dependency has made it challenging to assess total medical expenses. While Humana is still evaluating the full effects of the attack, CEO Bruce Broussard indicated a shift towards working with alternative services while Change’s systems are offline. Additionally, Humana employs Change within its dental and D-SNP businesses, amplifying the impact across its operations.
Kaiser Permanente:
Kaiser Permanente’s response to the cyberattack focused on assuring the integrity of its members’ data and system cybersecurity. The healthcare giant reported no known impact on members’ data or cybersecurity infrastructure. However, Kaiser did not specify whether there were delays in claims processing or payments. While some members seeking retail pharmacy prescriptions might face delays, Kaiser pharmacies have remained unaffected. The organization is assisting members with alternatives and acknowledges potential delays in processing claims or sending bills to third-party payers for services rendered to patients.
The fallout from the Change Healthcare attack underscores the vulnerabilities within the healthcare sector’s digital infrastructure. While some payers like Aetna are actively exploring contingency plans and providing support to providers, others like Humana face challenges in assessing total expenses due to system dependencies. Nevertheless, the resilience displayed by these payers in adapting to alternative processes and mitigating potential disruptions highlights their commitment to maintaining operations amidst adversity.
As the healthcare industry grapples with the aftermath of the Change Healthcare attack, it’s evident that resilience and adaptability are paramount in overcoming such adversities. Major payers like Aetna, Elevance Health, Humana, and Kaiser Permanente have displayed commendable resilience in the face of unprecedented challenges, implementing alternative processes and mitigating disruptions to ensure continuity in operations. However, the incident underscores the urgent need for collaborative efforts between stakeholders to fortify cybersecurity defenses and safeguard patient data. By leveraging collective expertise and resources, the industry can emerge stronger and more resilient, better prepared to confront future cybersecurity threats and uphold the integrity of healthcare services.