AHA Comments on Security of Legacy Medical Devices

Jun 01, 2018 - 02:26 PM
AHA-comment

Legacy medical devices are “a key vulnerability for hospitals and health systems,” related to cybersecurity, and device “manufacturers must support end-users in providing a secure environment for safe patient care,” AHA today told leaders of the House Committee on Energy and Commerce. “This support should include wrapping security precautions around these devices, adding security tools and auditing capabilities where possible, conducting regular updates and patching all software, and communicating security vulnerabilities quickly through consistent channels,” AHA said in response to a committee request for information on how best to keep medical devices secure over their useful lifetimes. Among other comments, AHA said that the Food and Drug Administration must make clear that security measures to protect legacy devices are required, not optional. “As a regulator, the FDA has a leadership role in creating expectations that manufacturers proactively minimize risk by building security into products by design, providing security tools to their end-users, and updating and patching devices as new intelligence and threats emerge,” AHA said.

Related News Articles

Headline
Minnesota health system to receive 2025 Foster G. McGaw Prize
Fairview Health Services, a Minneapolis-based nonprofit health system of 10 hospitals and medical centers serving the greater Twin Cities metro area and north-…
Headline
Applications open for AHA’s Rural Hospital Excellence in Innovation Award 
The Rural Hospital Excellence in Innovation Award honors rural hospitals that are leading the way in innovative, sustainable and community-centered care. If…
Headline
Applications for AHA’s Circle of Life Award close July 15
AHA’s Circle of Life Award celebrates innovation in palliative and end-of-life care and seeks to provide best practices and models for the field. Programs and…
Headline
Senate holds hearing on health care cybersecurity and patient privacy
In a statement submitted to the Senate Health, Education, Labor and Pensions Committee for a hearing today on health care cybersecurity and patient privacy,…
Headline
AHA podcast: When Cyberattacks Strike — Is Your Board Ready?
Cyberattacks on hospitals are urgent threats to patient safety, care delivery and public trust. In this conversation, Ajay Gupta, board chair of Trinity Health…
Headline
Apply now for 2026 AHA Quest for Quality Prize; optional simulation opportunity with Laerdal Medical
The AHA encourages hospitals and health systems that are committed to leadership and innovation in improving quality and advancing health to apply for its 2026…