Ransomware attacks are one of the largest threats to the healthcare industry and a tough cybersecurity problem to address. From 2016-2021, there were almost 400 ransomware attacks on healthcare organizations in the US. It is estimated that such attacks exposed the personal healthcare data of over 40 million patients. Since these attacks cannot typically be resolved without paying the ransom, it is important to invest in preventative measures to protect healthcare data from potential breach.
Since the enactment of the Affordable Care Act, hospitals have faced strict and substantial regulations regarding the provision of financial assistance to patients in the form of “charity care.” An essential element in a hospital’s ability to maintain tax-exempt status and financial solvency, charity care has worked to serve uninsured and indigent patients while helping charitable hospitals serve their mission and retain the benefits that come with it. The state of Pennsylvania recently passed legislation requiring more explicit and affirmative acts to provide charity care to more eligible patients. The change is unprecedented, and other states look to be slowly responding in their own ways. Compliance with these changes is most beneficial with proactive measures and risk assessments even before change comes through the doors.