The Biden administration has proposed new cybersecurity rules aimed at limiting the impact of healthcare data leaks. The measures include encrypting sensitive information to prevent unauthorized access, even in the event of a breach. Companies handling healthcare data would also be required to conduct regular compliance checks to ensure their networks meet the newly proposed standards.
According to Anne Neuberger, the US Deputy National Security Advisor for Cyber and Emerging Technology, the proposed rule aims to address the growing threat of large-scale healthcare breaches. In 2023, over 167 million people had their healthcare information affected by cybersecurity incidents.
The proposed regulations would update existing HIPAA standards, which have seen a significant increase in breaches since 2019. Hacking and ransomware attacks on hospitals and healthcare data have risen by 89% and 102%, respectively.
Neuberger warned that hackers are targeting hospitals and leaking sensitive information on the dark web, allowing individuals to be blackmailed. The administration hopes the new measures will improve cybersecurity and protect Americans’ health information. A 60-day public comment period is currently underway before any final decisions can be made.
Source: https://www.reuters.com/technology/cybersecurity/biden-administration-proposes-new-cybersecurity-rules-limit-impact-healthcare-2024-12-27