Cyberattacks are having fatal consequences, so the White House wants hospital funding tied to hospital security

American dollars with medical stethescope
(Image credit: Shutterstock)

The Biden administration is looking to introduce a policy that will require US hospitals to meet a certain level of digital security, including multi-factor authentication, in order to secure federal funding.

A number of attacks in recent months have severely impacted hospitals, forcing ambulances to be diverted and non-urgent procedures to be rescheduled.

Hospitals are already bound by a number of requirements relating to building construction, security and how patients are treated in order to secure funding.

Basic cyber hygiene

Hospitals are lucrative targets for ransomware attacks due to the sensitivity and amount of data stored on their systems, and often lack the robust security structure needed to keep cybercriminals out of their systems. The increasing complexity and number of network enabled devices used in medical procedures and patient care increases the vulnerability of hospitals to cyber attacks.

That’s why establishing this basic level of cyber security as a prerequisite for federal funding is seen as a necessary step in preventing cyber attacks against hospitals. Introducing measures such as multi-factor authentication to hospital devices alongside software update timelines can stem the flow of attacks.

An anonymous senior administration official told The Messenger that the government is “homing in on those key cybersecurity practices that we really do believe bring a meaningful impact.” It is expected that this policy will come into effect at some point this year.

The rules for basic cybersecurity are to be proposed in the near future by the Centers for Medicare & Medicaid Services, and will hopefully work in combination with the International Counter-Ransomware Initiative’s pledge of non-payment to ransomware attacks that target government institutions.

Recent studies have shown that cyber attacks on hospitals can have real-world effects on patient health, with a 2022 study finding that some hospitals reported an increase in patient mortality following cyber attacks on IoT devices.

More from TechRadar Pro

Benedict Collins
Staff Writer (Security)

Benedict has been writing about security issues for over 7 years, first focusing on geopolitics and international relations while at the University of Buckingham. During this time he studied BA Politics with Journalism, for which he received a second-class honours (upper division), then continuing his studies at a postgraduate level, achieving a distinction in MA Security, Intelligence and Diplomacy. Upon joining TechRadar Pro as a Staff Writer, Benedict transitioned his focus towards cybersecurity, exploring state-sponsored threat actors, malware, social engineering, and national security. Benedict is also an expert on B2B security products, including firewalls, antivirus, endpoint security, and password management.

Read more
healthcare
US government wants to toughen up cybersecurity rules for healthcare organizations
UK Government launches ransomware protection proposals
Flags of Iran, China, Russia and North Korea on a wall. China North Korea Iran Russia alliance
Cybercrime is helping fund rogue nations across the world - and it's only going to get worse, Google warns
Classroom
Many schools still don’t have basic cybersecurity measures, research reveals
Digital US flag
Biden orders review, new rules governing US national cybersecurity
Representational image of a cybercriminal
Should ransomware payments be illegal?
Latest in Pro
An image of network security icons for a network encircling a digital blue earth.
Why multi-CDNs are going to shake up 2025
A stylized depiction of a padlocked WiFi symbol sitting in the centre of an interlocking vault.
Broadcom warns of worrying security flaws affecting VMware tools
URL phishing
HaveIBeenPwned owner suffers phishing attack that stole his Mailchimp mailing list
Ransomware
Cl0p resurgence drives ransomware attacks to new highs in 2025
Millwall FC The Den
The UK's first football club mobile network is here - but you probably won't guess which team has launched it
Google Chrome
Google Chrome security flaw could have let hackers spy on all your online habits
Latest in News
Xbox Series X and Xbox wireless controller set to a green background
Xbox Insiders are currently testing a new Game Hub feature that looks useful, but I've got mixed feelings about it
A stylized depiction of a padlocked WiFi symbol sitting in the centre of an interlocking vault.
Broadcom warns of worrying security flaws affecting VMware tools
Microsoft Surface Laptop and Surface Pro devices on a table.
Hate Windows 11’s search? Microsoft is fixing it with AI, and that almost makes me want to buy a Copilot+ PC
Oura Ring 4
Activity tracking on Oura Ring is about to get a whole lot better, but I've got bad news about your step count
Google Pixel Buds Pro 2
Cleaned your Pixel Buds Pro 2 recently? If not, you might be getting worse sound
Google Maps on a phone being held in someone's hand
Google Maps is getting two key upgrades, for easier route planning and quicker access to Gemini AI