Becker's Healthcare July 8, 2024
Giles Bruce

Health systems and industry trade groups are objecting to new cybersecurity reporting requirements proposed by the Cybersecurity and Infrastructure Security Agency.

The recommended rule under the Cyber Incident Reporting for Critical Infrastructure Act of 2022 would, among other things, require covered entities to report cyberattacks within 72 hours and ransom payments within 24 hours. The proposal, which is estimated to cost the industry $1.4 billion, would exempt small and critical access hospitals.

“The AHA recommends that CISA revise the proposed rule to incentivize collaboration rather than threaten further punishment on hospitals and health systems responding...

Today's Sponsors

Venturous
Got healthcare questions? Just ask Transcarent

Today's Sponsor

Venturous

Continue Reading

 
Topics: Cybersecurity, Govt Agencies, Health IT, Health System / Hospital, HHS, Provider, Technology
Related Articles:
After Pennsylvania hospital shooting, expressions of compassion and anger
HIMSS 2025: Four big themes of the health conference
Prime completes purchase of 8 Illinois hospitals
How innovative partnerships are reshaping patient safety [PODCAST]
Emergency departments as primary care safety nets [PODCAST]

Share This Article