Hospitals tell lawmakers FDA should play tougher role in securing medical devices

A major hospital group says the Food and Drug Administration needs to step up and clarify that cybersecurity is mandated for medical devices, a move intended to address risks related to legacy products that can't be updated or adequately patched as Congress considers steps to protect patients from cyber attacks.

“The FDA must make clear that security measures to protect legacy devices are required, not optional,” writes the American Hospital Association in comments to the House Energy and Commerce Committee....