US government spending $50m on auto-patcher for hospital IT

News
By published

There is a lot at stake for the UPGRADE program

digital healthcare
(Image credit: Shutterstock / elenabsl)

The United States government is offering $50 million to whoever can develop a new piece of technology that will better secure healthcare IT equipment.

Due to the sensitivity of the data it generates, the healthcare industry is one of the most attacked in the US, with ransomware actors constantly targeting hospitals and insurance companies. After identifying the problem two years ago, the Biden administration formed a new agency within the US government called Advanced Research Projects Agency for Health, or ARPA-H. 

Now, this agency has kickstarted project UPGRADE - Universal PatchinG and Remediation for Autonomous DEfense. The goal of the project is to create a software suite that will scan healthcare IT gear for vulnerabilities, apply patches where available, and develop and test mitigations where patches are unavailable. 

Securing the nation's health

The problem with keeping healthcare IT gear up to date is that it needs to be taken offline during the patching, which could leave patients vulnerable, The Register explained in its writeup. That being said, the project will require teams to build a vulnerability mitigation software platform, build digital twins for hospital gear, auto-detect flaws, and auto-develop custom defenses.

"We continue to see how interconnected our nation's health care ecosystem is and how critical it is for our patients and clinical operations to be protected from cyberattacks," HHS Deputy Secretary Andrea Palm said in a statement. "ARPA-H's UPGRADE will help build on HHS' Healthcare Sector Cybersecurity Strategy to ensure that all hospital systems, large and small, are able to operate more securely and adapt to the evolving landscape."

Besides social engineering, software vulnerabilities are one of the most common points of entry for cybercriminals, who are constantly targeting healthcare organizations. Only recently, Change Healthcare was a victim of a ransomware attack which not only disrupted its operations and possibly put patients at risk, but also forced the provider to pay $22 million in cryptocurrency.

More from TechRadar Pro

Sead Fadilpašić

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

Read more
healthcare
US government wants to toughen up cybersecurity rules for healthcare organizations
Lock on Laptop Screen
United Healthcare data breach may have affected 190 million Americans
An image of network security icons for a network encircling a digital blue earth.
Why effective cybersecurity is a team effort
New tech skills projects aim to boost UK cyber defenses
Flags of Iran, China, Russia and North Korea on a wall. China North Korea Iran Russia alliance
Cybercrime is helping fund rogue nations across the world - and it's only going to get worse, Google warns
UK Government launches ransomware protection proposals
Latest in Security
Data leak
Top home hardware firm data leak could see millions of customers affected
Representational image depecting cybersecurity protection
Third-party security issues could be the biggest threat facing your business
A stylized depiction of a padlocked WiFi symbol sitting in the centre of an interlocking vault.
Broadcom warns of worrying security flaws affecting VMware tools
Android Logo
Devious new Android malware uses a Microsoft tool to avoid being spotted
URL phishing
HaveIBeenPwned owner suffers phishing attack that stole his Mailchimp mailing list
Ransomware
Cl0p resurgence drives ransomware attacks to new highs in 2025
Latest in News
Hisense U8 series TV on wall in living room
Hisense announces 2025 mini-LED TV lineup, with screen sizes up to 100 inches – and a surprising smart TV switch
Nintendo Music teaser art
Nintendo Music expands its library with songs from Kirby and the Forgotten Land and Tetris
An image of Pro-Ject's Flatten it closed and opened
Pro-Ject’s new vinyl flattener will fix any warped LPs you inadvertently buy on Record Store Day
The iPhone 16 Pro on a grey background
iPhone 17 Pro tipped to get 8K video recording – but I want these 3 video features instead
EA Sports F1 25 promotional image featuring drivers Oscar Piastri, Carlos Sainz and Oliver Bearman.
F1 25 has been officially announced, with this year's entry marking a return for Braking Point and a 'significant overhaul' for My Team mode
Garmin clippd integration
Garmin's golf watches just got a big software integration upgrade to help you improve your game
More about security
Data leak

Top home hardware firm data leak could see millions of customers affected
Representational image depecting cybersecurity protection

Third-party security issues could be the biggest threat facing your business
An AI face in profile against a digital background.

The race to trillion-parameter model training in AI is on, and this company thinks it can manage it for less than $100,000
See more latest
Most Popular
An AI face in profile against a digital background.
The race to trillion-parameter model training in AI is on, and this company thinks it can manage it for less than $100,000
Hisense U8 series TV on wall in living room
Hisense announces 2025 mini-LED TV lineup, with screen sizes up to 100 inches – and a surprising smart TV switch
Ninkear MBOX 8 Pro
This mini PC has a detachable docking station that hides a hard drive, and I am not convinced whether it's a good idea
Nintendo Music teaser art
Nintendo Music expands its library with songs from Kirby and the Forgotten Land and Tetris
The iPhone 16 Pro on a grey background
iPhone 17 Pro tipped to get 8K video recording – but I want these 3 video features instead
CoreWeave
Is CoreWeave another WeWork? Blogger who caused Nvidia market capitalization to drop by $600 billion in a day thinks so
Discord Clyde
Discord's game overlay has seen a complete revamp - I've tried it, and it's one of the best updates ever
Swiss flag with view of Geneva city, Switzerland
Secure encryption and online anonymity are now at risk in Switzerland – here's what you need to know
Data leak
Top home hardware firm data leak could see millions of customers affected
An image of Pro-Ject's Flatten it closed and opened
Pro-Ject’s new vinyl flattener will fix any warped LPs you inadvertently buy on Record Store Day