Legacy medical devices are “a key vulnerability for hospitals and health systems,” related to cybersecurity, and device “manufacturers must support end-users in providing a secure environment for safe patient care,” AHA today told leaders of the House Committee on Energy and Commerce. “This support should include wrapping security precautions around these devices, adding security tools and auditing capabilities where possible, conducting regular updates and patching all software, and communicating security vulnerabilities quickly through consistent channels,” AHA said in response to a committee request for information on how best to keep medical devices secure over their useful lifetimes. Among other comments, AHA said that the Food and Drug Administration must make clear that security measures to protect legacy devices are required, not optional. “As a regulator, the FDA has a leadership role in creating expectations that manufacturers proactively minimize risk by building security into products by design, providing security tools to their end-users, and updating and patching devices as new intelligence and threats emerge,” AHA said.

Related News Articles

Headline
In a letter today to leaders of the Senate Health, Education, Labor and Pensions Committee, the AHA and five other national hospital groups said they agree…
Insights and Analysis
Tackling the complex issue of clinician burnout begins by being willing to have the conversation, AHA leaders shared this past weekend at the Aspen Ideas:…
Headline
The AHA today submitted comments on the Centers for Medicare…
Headline
The AHA today submitted comments on the revised version of the Lower Health Care Costs Act (S. 1895), legislation to prevent surprise medical bills, reduce…
Headline
The AHA today submitted comments on the Centers for Medicare…
Headline
The AHA today urged the Office of Management and Budget to continue using the Consumer Price Index for All Urban Consumers (CPI-U) in making annual adjustments…