{"id":193112,"date":"2026-03-05T12:33:00","date_gmt":"2026-03-05T17:33:00","guid":{"rendered":"https:\/\/testing.news-you-need.com\/index.php\/2026\/03\/05\/health-isac-hacking-healthcare-3-5-2026\/"},"modified":"2026-03-05T12:35:10","modified_gmt":"2026-03-05T17:35:10","slug":"health-isac-hacking-healthcare-3-5-2026","status":"publish","type":"post","link":"https:\/\/testing.news-you-need.com\/index.php\/2026\/03\/05\/health-isac-hacking-healthcare-3-5-2026\/","title":{"rendered":"Health-ISAC Hacking Healthcare 3-5-2026"},"content":{"rendered":"

Health-ISAC Hacking Healthcare 3-5-2026<\/a><\/p>\n

https:\/\/health-isac.org\/health-isac-hacking-healthcare-3-5-2026\/<\/a><\/p>\n

Publish Date: 2026-03-05 12:33:00<\/a><\/p>\n

Source Domain: health-isac.org<\/a><\/p>\n

Author: <\/a><\/p>\n

Using an unordered list, summarize the following article with between 4 and 8 key points. This week, Health-ISAC\u00ae\u2018s Hacking Healthcare\u00ae\u00a0examines a legislative bill in the United States Senate that may have the congressional support to significantly change numerous aspects of health sector cybersecurity and resiliency. Join us as we assess what the bill would do, the progress it appears to be making, and what it could mean for health sector entities in the United States if it is passed.As a reminder, this is the public version of the Hacking Healthcare blog. For additional in-depth analysis and opinion, become a member of H-ISAC and receive the TLP Amber version of this blog (available in the Member Portal.)
\nWelcome back to Hacking Healthcare\u00ae\u00a0!
\nThe Health Care Cybersecurity and Resiliency Act of 2025 Makes Progress\u00a0
\nCongressional gridlock, stymying the passage of needed legislation, has been a common lament in the United States, with recent congressional sessions seeming to be particularly ineffectual. The inability to find a path forward on the Cybersecurity Information Sharing Act of 2015 (CISA 2015) is a frustrating example of how even broadly supported legislation can become bogged down. However, recent progress on a consequential sector cybersecurity and resiliency bill is a reason for some optimism.
\nWhat Is the Health Care Cybersecurity and Resiliency Act of 2025[i]?
\nPreviously introduced last Congress in November 2024 and reintroduced in early December 2025, the Health Care Cybersecurity and Resiliency Act of 2025 would drive numerous changes to policies, processes, and regulations for both the public and private sectors. The United States Senate Committee on Health, Education, Labor and Pensions press release[ii]\u00a0from December provides a brief breakdown of some of the most important aspects of the bill, including its intent to:<\/p>\n

Strengthen cybersecurity in the health care sector by providing grants to health entities to improve cyberattack prevention and response.
\nProvide training to health entities on cybersecurity best practices.
\nSupport rural communities by providing best practices to rural health clinics and other providers on cybersecurity breach prevention, resilience, and coordination with federal agencies.
\nImprove coordination between the Department of Health and Human Services (HHS) and Cybersecurity and Infrastructure Security Agency (CISA) to better respond to cyberattacks in the health care sector.
\nModernize current regulations so entities covered under the Health Insurance Portability and Accountability Act (HIPAA) use the best cybersecurity practices.
\nRequire the HHS Secretary to develop and implement a cybersecurity incident response plan<\/p>\n

\u00a0
\nWhat Is the Catalyst for Introducing the Bill?
\nThe legislation has its roots in the bipartisan Health Care Cybersecurity Working Group, which came together at the end of 2023 to find ways of addressing the \u201crecord\u201d number of cybersecurity attacks plaguing the health sector.[iii]\u00a0The bipartisan sponsors who reintroduced the bill cited the same issues as they did more than two years ago, including the devastating consequences of service disruption on patient care and the need to bolster trust and confidence in the security of sensitive health data.
\nIn our Action & Analysis section below, we will dig into the details of some of the bill\u2019s most impactful provisions and discuss what to make of the recent legislative markup that advanced the bill out of committee last week.
\nAction & Analysis**Included with Health-ISAC Membership**
\n\u00a0
\n[i]\u00a0https:\/\/www.congress.gov\/bill\/119th-congress\/senate-bill\/3315\/text
\n[ii]\u00a0https:\/\/www.help.senate.gov\/rep\/newsroom\/press\/chair-cassidy-colleagues-reintroduce-legislation-to-strengthen-cybersecurity-in-health-care
\n[iii]\u00a0https:\/\/www.help.senate.gov\/rep\/newsroom\/press\/ranking-member-cassidy-warner-colleagues-launch-bipartisan-senate-health-care-cybersecurity-working-group
\n[iv]\u00a0Towards the end of the Biden administration, HHS put out an extensive Notice of Proposed Rulemaking to address the HIPAA Security Rule that neared 400 pages. The transition to the Trump administration, the subsequent freeze of regulatory developments pending administration review, and a decline in HHS policymaking transparency put the fate of this effort in doubt, given that there is no legal requirement for HHS to pursue an update. However, the Spring Unified Agenda for 2025, the most current agenda listing department and agency regulatory planning, still lists a Final Rule scheduled for May 2025.
\n[v]\u00a0https:\/\/www.congress.gov\/bill\/119th-congress\/senate-bill\/3315\/text
\n[vi]\u00a0https:\/\/www.congress.gov\/bill\/119th-congress\/senate-bill\/3315\/text
\n[vii]\u00a0https:\/\/www.congress.gov\/bill\/119th-congress\/senate-bill\/3315\/text
\n[viii]\u00a0https:\/\/www.congress.gov\/bill\/119th-congress\/senate-bill\/3315\/text
\n[ix]\u00a0https:\/\/www.help.senate.gov\/imo\/media\/doc\/health_care_cybersecurity_and_resiliency_act_of_2025_section-by-section.pdf
\n[x]\u00a0The legislation advanced in a 22-1 vote, with the lone holdout being Sen. Rand Paul [R-KY], who is also at the center of the CISA 2015 reauthorization holdup.<\/p>\n

<\/p>\n","protected":false},"excerpt":{"rendered":"

Health-ISAC Hacking Healthcare 3-5-2026 https:\/\/health-isac.org\/health-isac-hacking-healthcare-3-5-2026\/ Publish Date: 2026-03-05 12:33:00 Source Domain: health-isac.org Author: Using an…<\/p>\n","protected":false},"author":1,"featured_media":193113,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/health-isac.org\/wp-content\/uploads\/Hacking-Healthcare-Post-Icon.png","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[30,24],"class_list":["post-193112","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-breach","tag-cybersecurity"],"_links":{"self":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/193112"}],"collection":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=193112"}],"version-history":[{"count":1,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/193112\/revisions"}],"predecessor-version":[{"id":193114,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/193112\/revisions\/193114"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/193113"}],"wp:attachment":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=193112"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=193112"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=193112"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}