Health and Human Services (HHS)

The U.S. Department of Health and Human Services (HHS) proposed a strategic approach to enhance healthcare cybersecurity, which met with resistance from the American Hospital Association (AHA). This cybersecurity strategy emphasizes voluntary performance goals, resource provision, enforcement strategy, and a centralized HHS cybersecurity hub. The AHA, however, opposed mandatory cybersecurity requirements, emphasizing the need for cooperative federal support over punitive measures since cyberattacks often originate from sophisticated external entities and third-party vendors. The debate underlies the challenge of balancing patient and data protection with the practicalities and costs of cybersecurity in healthcare.

Source: https://www.hcinnovationgroup.com/cybersecurity/article/53080793/cyber-expert-mac-mcmillan-on-the-hhs-aha-exchange-on-cyber-preparedness

"id": "hhs903070724",
"linkid": "hhsgov",
"type": "Cyber Attack",
"date": "12/2023",
"severity": "100",
"impact": "7",
"explanation": "Attack that could injure or kill people"