AHA testifies at Senate hearing on cyber threats amid pandemic

Dec 02, 2020 - 04:08 PM
FDAcybersecurity

The Senate Homeland Security and Governmental Affairs Committee today held a hearing on defending communities from cyber threats during the COVID-19 pandemic.

Testifying at the hearing, John Riggi, AHA senior advisor for cybersecurity and risk, said the pandemic has led to a cyber “triple threat” for hospitals and health systems: an expanded attack surface due to rapidly expanded network- and internet-connected technologies and services; increased cyberattacks of all types; and fewer available resources to bolster cybersecurity defenses.

“A ransomware attack on a hospital crosses the line from an economic crime to a threat-to-life crime; such attacks should therefore be aggressively pursued and prosecuted as such by the federal government,” Riggi said. “…We recommend that, given the increased cyber threat environment and attacks specifically targeting hospitals and health systems, along with resource constraints imposed upon hospitals and health systems in response to COVID-19, additional safe harbor protections from civil and regulatory liability be provided to hospital and health system victims of cyberattacks.”

Also testifying at the hearing were representatives from the Department of Homeland Security; New Hampshire Department of Information Technology; Hartford, Conn., public schools; and the ransomware incident response platform Coveware. 

Related News Articles

Headline
AHA comments on CIRCIA’s cyber incident reporting requirements 
The AHA July 2 submitted comments to the Cybersecurity and Infrastructure Security Agency on its proposed rule establishing reporting requirements for…
Headline
HHS issues cyber alert on critical vulnerability in ‘MOVEit,’ file transfer platform
The Department of Health and Human Services Health Sector Cybersecurity Coordination Center June 27 issued an alert about a critical vulnerability in MOVEit, a…
Headline
Agencies issue joint report on memory safety vulnerabilities in open source projects
A joint report released June 26 by the Cybersecurity and Infrastructure Security Agency, FBI, the Australian Cyber Security Centre and Canadian Centre for…
Headline
Bulletin alerts health sector to cyberthreat exploits on TeamViewer
The Health Information Sharing and Analysis Center June 27 issued a threat bulletin alerting the health sector to active cyberthreats exploiting TeamViewer. H-…
Headline
FBI, HHS issue advisory on cyberthreat actors targeting health care to divert payments
The FBI and Department of Health and Human Services June 24 released an advisory about cyberthreat actors targeting health care organizations in attempts to…
Headline
HHS alerts health sector to cyberthreat from Qilin ransomware group 
The Department of Health and Human Services’ Health Sector Cybersecurity Coordination Center (HC3) this week released an advisory about Qilin, formerly "Agenda…