Ransomware, Governance, Risk and Compliance

Increased health cybersecurity funding, penalties sought by HHS

Significantly increased prevalence of major data breaches and ransomware attacks in healthcare between 2018 and 2022 have prompted the Department of Health and Human Services to unveil a new cybersecurity strategy for the sector that involves increased cybersecurity funding and enforcement, FierceHealthcare reports. Aside from creating voluntary healthcare cybersecurity goals aimed at streamlining various security standards, the HHS will also be working with Congress to incentivize healthcare providers conducting short- and long-term cybersecurity improvements, as well as establish new cybersecurity requirements that would entail larger penalties for those that fail to adhere to the HIPAA Security Rule. HHS will also move to strengthen its Administration of Strategic Preparedness and Response under the new strategy. "HHS is working with healthcare and public health partners to bolster our cybersecurity capabilities nationwide. We are taking necessary actions that will make a big difference for the hospitals, patients and communities who are being impacted," said HHS Secretary Xavier Becerra.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.