The GAO's assessment warns that the Department of Health and Human Services has not adequately resolved existing cybersecurity gaps, even with increasing threats to healthcare infrastructure.
Major cyberattacks, like the February 2024 Change Healthcare ransomware incident, highlight the urgent need for HHS to act upon the GAO's outstanding cyber recommendations.
While HHS has efforts to mitigate ransomware, the GAO found that inadequate monitoring of implementation practices persists, jeopardizing the effectiveness of these initiatives.
Without comprehensive tracking of hospitals' cybersecurity practices, HHS may fail to allocate resources effectively, risking unaddressed vulnerabilities in healthcare cybersecurity.
Collection
[
|
...
]