A report by the Government Accountability Office (GAO) has criticized the Department of Health and Human Services (HHS) for failing to implement several recommended cybersecurity measures. The GAO found that the HHS had not adequately monitored the healthcare sector’s implementation of ransomware mitigation and failed to track adoption of certain practices. The report also stated that HHS lacks full awareness of the sector’s cybersecurity practices, risking misallocation of resources.

HSCC CWG urges halting NPRM, calls for joint cybersecurity policy reform to boost healthcare resilience
The Cybersecurity Working Group (CWG) within the U.S. Healthcare and Public Health Sector Coordinating Council (HSCC) has called on the country’s federal administration to work