HHS guide outlines role of cyber rules in ransomware attacks amid calls for new statute

A new Department of Health and Human Services guide stresses that cybersecurity requirements under healthcare regulations do apply to ransomware and can help organizations prevent and mitigate such attacks, but lawmakers say new statute might be necessary to effectively handle the threat.

The new HHS guide, released by the department on July 11, comes after calls from lawmakers to clarify the differences between ransomware and other cyber attacks and explain how existing Health Insurance Portability and Accountability Act and...