A group of bipartisan senators is aiming to strengthen cybersecurity in healthcare. They are reviving the Health Care Cybersecurity and Resiliency Act, which focuses on updating regulations, providing grants, and offering training. This effort comes from a 2023 working group and is led by Senator Bill Cassidy along with Senators Mark Warner, Maggie Hassan, and John Cornyn.
Cyberattacks in healthcare can be devastating. They can expose sensitive patient information and disrupt emergency services, especially in rural areas that lack resources. Hassan points out that these attacks pose a serious risk to patient care.
The proposed legislation aims to enhance cooperation between the Department of Health and Human Services (HHS) and the Cybersecurity and Infrastructure Security Agency (CISA). For example, it instructs HHS to work with state CISA coordinators to train healthcare providers. Additionally, it plans to clarify HHS’s responsibilities, including developing a cybersecurity response plan and updating HIPAA regulations to reflect modern practices.
Importantly, the act authorizes a five-year grant program for specific healthcare entities, such as academic centers, although it doesn’t specify funding amounts. Some of its objectives echo previous bills that failed to pass, which were motivated by significant breaches, including the Change Healthcare ransomware attack.
Cornyn emphasizes the need for patients to trust that their medical data is secure against breaches. This renewed focus on healthcare cybersecurity may mark a turning point, as frequent attacks have shown the vulnerabilities in the system.
According to recent statistics, cybersecurity incidents in healthcare have skyrocketed, with a 55% increase in reported breaches from 2021 to 2022. As the industry continues to digitize, the importance of robust cybersecurity measures cannot be overstated.
For further reading on the rising threats in healthcare cybersecurity, check out reports from Cybersecurity & Infrastructure Security Agency.
Source link
bill cassidy,change healthcare,congress,cybersecurity and infrastructure security agency (cisa),department of health and human services (hhs),health care,hipaa,john cornyn,maggie hassan,mark warner,ransomware,senate health education labor and pensions committee,training
