HHS Cranks Up Cyber Defenses in Healthcare

The US Department of Health and Human Services is rolling out new HIPAA rules by 2025 to tackle ransomware attacks, which surged from 34% to 67% since 2021. Healthcare organizations will need to restore data within 72 hours, implement multi-factor authentication, and undergo annual audits. With a hefty $9 billion initial investment and $1.3 billion for hospitals, this move aims to safeguard over 100 million patient records. While the American Hospital Association frets about resource strains, the cybersecurity ramp-up promises a safer digital realm for patient care.