Following a major cyberattack on Change Healthcare, a subsidiary of UnitedHealth Group (UHG), confusion arose regarding who would handle the Change Healthcare cyberattack HIPAA breach notification for potentially millions of affected individuals. HIPAA regulations govern such notifications, but the situation presented unique challenges. In May 2024, the Department of Health and Human Services (HHS) issued […]