In a statement submitted to the House Energy and Commerce and Health Subcommittee for an April 17 hearing on President Biden's fiscal year 2025 Health and Human Services budget request, the AHA said He expressed concern about the new proposed penalties. Defined as mandatory cybersecurity practices. Hospitals with elective admission payment systems that do not meet these criteria will be subject to penalties of up to 100% of the annual market basket increase starting in FY2029, and an additional penalty of up to 1% off the base payment starting in FY2031. You may be fined. Failure to implement this practice will result in a cap on the total fine and a maximum payment reduction of 1%.
“Today's well-documented sources of cybersecurity risks in the healthcare sector, including changing healthcare cyberattacks, are due to vulnerabilities in third-party technologies, rather than in the hospital's core systems.” AHA writes. “No organization, including federal agencies, is immune from cyber-attacks and cannot be. Imposing fines or cutting Medicare payments will reduce the hospitals needed to fight cyber-crime.” resources and is counterproductive to the common goal of preventing cyberattacks. To make meaningful progress in the fight against cybercrime, Congress and the government need to focus on the entire health sector, not just hospitals. Additionally, for any defensive strategy imposed on the health care sector, Congress requires federal agencies to develop a strong and sustained offensive cyber strategy to combat this ongoing national security challenge. “Threats.”
