H-ISAC TLP White Hacking Healthcare - September 20, 2022

This edition of Hacking Healthcare begins by examining the draft of the European Commission’s Cyber Resilience Act (CRA) to understand the practical challenges it aims to address within the current regulatory framework for digital products and services, as well as where gaps may exist. We briefly break down the document’s contents and explain the impact it may have on the healthcare industry. Then, we cover the Cybersecurity and Infrastructure Security Agency’s (CISA) Request for Information (RFI) soliciting public input on the incident reporting and ransomware reporting aspects of the previously passed Cyber Incident Reporting for Critical Infrastructure Act of 2022 (CIRCIA). Welcome back to Hacking Healthcare. 

  • Overview of the Cyber Resilience Act
  • CISA’s RFI on CIRCIA Incident Reporting 

View the detailed report below

Key Resources

Related Resources

Advisory
Agencies Issue Advisory as Ransomware Group Accelerates Attacks on Health Care Sector
Public
Letter/Comment
AHA, Others Urge UnitedHealth Group to Provide Breach Notifications on Behalf of the Field
Public
Letter/Comment
AHA Letter to Senate Finance Committee for May 1 Hearing on Change Healthcare Cyberattack
Letter/Comment
AHA Letter to House E&C Subcommittee for May 1 Hearing on Change Healthcare Cyberattack
Advisory
Homeland Security Proposes New Cyber Incident Reporting Requirements
Member
Special Bulletin
UnitedHealth Group Provides Update on Data Impacted By Cyberattack
Member