Sen. Mark Warner urges nation to put cybersecurity first in fight to protect sensitive data

Apr 24, 2023 - 02:37 PM
Frank Sesno and Sen. Mark Warner

More than 1,000 executive leaders from the nation’s top hospitals and health systems convened at the 2023 AHA Annual Membership Meeting, April 23-25 in Washington, D.C.

Health care cybersecurity has too often been an afterthought, with protections added after an internal review or external attack discover a vulnerability, Sen. Mark Warner, D-Va., told moderator former CNN Washington bureau chief Frank Sesno at today’s federal plenary session. 
 
Warner called for a clearer chain of command at the federal level when it comes to health care cyber policy; a “bill of sale” to make medical device software more visible to patients and providers; and minimum mandatory cybersecurity standards for the health care field.
  
“I don’t think you can just say ‘another unfunded mandate,’” Warner said about the costs of building a stronger cybersecurity shield for health care. “But we’ve put up with a lot of technology where some firms, frankly, put out vulnerable product on an ongoing basis.” 

Putting cybersecurity first, rather than looking at it as tool to use after a system has been compromised, is the best way to protect sensitive data, he said. “It’s like washing your hands before you go into the OR. Otherwise, you find it’s the weakest link in the chain where the bad guys can get in.” 

For more on the 2023 AHA Annual Meeting, read AHA's coverage.

Related News Articles

Headline
HHS says hospitals impacted by Change Healthcare cyberattack can delegate breach notifications to UnitedHealth Group
The Department of Health and Human Services May 31 announced that hospitals and health systems can require UnitedHealth Group to notify patients if their data…
Headline
ARPA-H launches new program to enhance, automate cybersecurity for health care facilities 
The Department of Health and Human Services' Advanced Research Projects Agency for Health May 20 announced the launch of a $50 million cybersecurity program…
Headline
Agencies issue guidance on mitigating cyberthreats with limited resources 
The Cybersecurity and Infrastructure Security Agency along with international agencies May 14 released guidance for high-risk nonprofit and other resource-…
Headline
Report: Delayed or missing payments increased for hospitals in first quarter
Hospitals and health systems nationwide saw a sizable increase in delayed or missing payments in first quarter 2024, according to a report released May 10 by…
Headline
Agencies warn of accelerating attacks on health care by Black Basta ransomware group
The Federal Bureau of Investigation, Cybersecurity and Infrastructure Security Agency, Department of Health and Human Services, and Multi-State Information…
Headline
DOJ charges Russian national with developing, operating LockBit ransomware
The Department of Justice May 7 announced more than two dozen criminal charges against Dimitry Yuryevich Khoroshev, 31, of Voronezh, Russia, for his alleged…