AHA voices support for bill to protect medical device cybersecurity 

Jun 27, 2022 - 03:35 PM
cybersecurity-hand-lock-graphic_900x400

 AHA Friday voiced support for the Protecting and Transforming Cyber Health Care Act (S. 3983/H.R. 7084), legislation that would require medical device manufacturers to meet certain cybersecurity requirements when seeking approval for devices that are internet connected or include software. For example, the bill would require medical device manufacturers to monitor and identify post-market vulnerabilities in a timely manner, develop a plan for coordinated vulnerability disclosure, and provide lifetime cybersecurity support of the device. It also would provide a “software bill of materials” for all software contained in the device, including third-party software. 
  
“Manufacturers should be accountable for developing products with appropriate security controls, as well as updating devices as cyber threats continue to evolve,” AHA said in  letters of support to the House and Senate sponsors, Sens. Bill Cassidy, R-La., and Tammy Baldwin, D-Wisc., and Reps. Michael Burgess, R-Texas, and Angie Craig, D-Minn. “We also encourage the inclusion of a provision to clarify that FDA approval of devices would not be jeopardized as manufacturers provide these updates.” 
 

Related News Articles

AHA Cyber Intel
Health Care Cybersecurity Considerations for 2026: This Year’s Top 3 Cyber Risks
Cyberattacks against hospitals, health systems and mission-critical health care third-party providers have surged in recent years. While these attacks often…
Headline
Microsoft warns of sophisticated phishing campaign heavily targeting health care organizations
Microsoft Threat Intelligence is warning of a large scale, multistage phishing campaign that disproportionately targeted the health care sector, sending “code…
Headline
CISA announces initiative to bolster critical infrastructure against nation-state cyberattacks
The Cybersecurity and Infrastructure Security Agency has launched a new initiative for critical infrastructure to defend against cyberattacks through proactive…
Headline
Webinar to explore AI use in cybersecurity, health care technology 
John Riggi, AHA national advisor for cybersecurity and risk, will moderate a webinar May 5 at 1 p.m. ET that will explore how bad actors are leveraging…
Headline
AHA, Joint Commission announce cybersecurity readiness effort 
The AHA and Joint Commission May 4 announced the launch of the Cyber Resilience Readiness program, an initiative to help hospitals and health systems assess…
Headline
Agencies issue guidance on adopting agentic AI systems
The Cybersecurity and Infrastructure Security Agency, National Security Agency and international partners have released guidance on adopting agentic artificial…