Legacy medical devices are “a key vulnerability for hospitals and health systems,” related to cybersecurity, and device “manufacturers must support end-users in providing a secure environment for safe patient care,” AHA today told leaders of the House Committee on Energy and Commerce. “This support should include wrapping security precautions around these devices, adding security tools and auditing capabilities where possible, conducting regular updates and patching all software, and communicating security vulnerabilities quickly through consistent channels,” AHA said in response to a committee request for information on how best to keep medical devices secure over their useful lifetimes. Among other comments, AHA said that the Food and Drug Administration must make clear that security measures to protect legacy devices are required, not optional. “As a regulator, the FDA has a leadership role in creating expectations that manufacturers proactively minimize risk by building security into products by design, providing security tools to their end-users, and updating and patching devices as new intelligence and threats emerge,” AHA said.

Related News Articles

In this ever-changing world, there are fewer certainties than ever before: the health care field, the political landscape, and even the climate are…
Insights and Analysis
Please consider applying for the award and sharing how your organization is improving health equity and value.
Insights and Analysis
In efforts to increase primary care use in the community and decrease avoidable emergency department visits, Copley Hospital in Morrisville, Vt., has spent the…
Chairperson's File
In recent years, Airbnb, Uber and Netflix have changed the way we vacation, hail a ride and watch movies.
Gov. Gina Raimondo this week signed an executive order establishing a 3.2 percent target for health care spending growth in Rhode Island through 2022.
The AHA's Rural Health Care Leadership Conference wrapped up today with a keynote session on the future of health care.