The Health Sector Cyber Initiative of the Biden administration has partnered with Microsoft and Google to give critical access and rural hospitals free and discounted cybersecurity services.
In 2023, the healthcare industry experienced more ransomware attacks than other critical infrastructure sectors. Cyber attacks increased by 130% from 2022, with cyberattacks on the healthcare sector increasing by 128%. To fight these attacks, resilience must be enhanced throughout the healthcare industry; having said that, a lot of hospitals, especially rural hospitals, just lack the finances to spend on cybersecurity. Rural hospitals, in particular smaller, independent critical access and rural emergency hospitals, can suffer devastating effects after a successful cyberattack.
Some rural hospitals are designated as critical access hospitals by the Centers for Medicare and Medicaid Services (CMS) if they are located over 35 miles away from the closest hospital or over 15 miles away from hospitals if located in mountainous parts. When a cyberattack on a critical access hospital results in the breakdown of essential systems, and the need for alternate emergency rooms, lives are put at risk. Additionally, because of their distant locations, these hospitals frequently have trouble with staffing, so manual workarounds while recovering from cyberattacks become much more challenging. These hospitals usually have difficulty with funds and have minimal means to avoid and deal with security threats. They are likewise preferred targets for cyberattacks. The United States has 1,800 to 2,100 critical access and rural hospitals serving over 60 million Americans.
The Biden-Harris Administration has acknowledged the important role of these hospitals and is doing something to help them enhance cybersecurity. On June 10, 2024, the White House announced a partnership with the private sector to enhance the security of the rural hospital system.
The White House, together with the National Rural Health Association and the American Hospital Association, acquired the support of Microsoft and Google in providing free or inexpensive services to rural hospitals and independent critical access hospitals to enhance cybersecurity.
Microsoft will offer grants, nonprofit rates, and up to 75% discounts on security services that are developed for smaller institutions. Bigger rural hospitals that are currently spending money on qualified Microsoft solutions will be given its best security suite for no additional cost for one year. Free cybersecurity checks by competent technology security companies will be made available to eligible rural hospitals to determine risks and security gaps, which is important in HIPAA compliance. Free training for IT personnel and free one-year security updates for Windows 10 will be provided as well.
Google will provide free endpoint security assistance to rural hospitals and non-profit institutions and some funding to facilitate software migration. Google will likewise kick off a pilot program for rural hospitals and will create a bundle of security features that match the unique requirements of rural hospitals.
America’s hospitals and health systems need to prioritize cybersecurity. Although hospitals and health systems have put in considerable resources to protect against cyberattacks, they need help, and that’s where the help from Microsoft and Google comes in. Many rural hospitals throughout America are having difficulties as they provide health care services in their communities, thus keeping them risk-free is important.