Department of Health and Human Services Deputy Secretary Andrea Palm addressed AHA Annual Membership Meeting attendees about the Administration’s work to improve access to care and increase the number of people with health insurance, as well as the Change Healthcare cyberattack and what cybersecurity looks like in the future.

“We’ve been in a live fire exercise recently and are learning lessons that inform the ways we will move forward,” she said. “These attacks happen — it’s not an if; it’s a when.”

HHS in January released cybersecurity performance goals for the health care sector, and Palm discussed the ways the Administration intends to support hospitals and health systems as they adopt best practices when it comes to protecting patients’ information and hospital networks as a whole. She specifically mentioned supporting rural hospitals, which may not have the resources to reach the goals on their own.

Palm also said that while the worst of the cyberattack on Change Healthcare may be over, HHS will continue to support hospitals and health systems as they recover. “We know the burden is easing, but we will continue to stay connected until everything is 100% operational.”

Palm emphasized that it also presented opportunities to learn, analyze and prepare for the next attack.

“There’s a ton of work for us to continue to do together,” she said. “I am excited to do that work with you and improve the health and well-being of people in this country.”
 

Related News Articles

Perspective
Public
This week, the FBI issued an urgent warning to all users — including hospitals — of a critical security soft spot within Oracle’s E-Business Suite, stating “…
Headline
The Health Sector Coordinating Council Oct. 7 released its Sector Mapping and Risk Toolkit, created to help health care providers and other organizations…
Headline
The AHA Oct. 3 responded to the Medicare Payment Advisory Commission’s recent analysis on the financial impacts of Medicare Advantage enrollment growth on…
Headline
The AHA Oct. 6 released a Cybersecurity Advisory urging immediate action against a critical Oracle E-Business Suite vulnerability that is remotely exploitable…
Headline
The AHA has launched an enhanced Cybersecurity and Risk webpage designed to help health care organizations strengthen their defenses against emerging cyber and…
Headline
A Health-ISAC (Information Sharing and Analysis Center) bulletin released Oct. 1 warns of a recently released LockBit 5.0 ransomware variant that poses a…