EU Wants To Strengthen Cyber Defense In Healthcare  

Uploaded on 2025-01-20 in NEWS-Cybersecurity News, FREE TO VIEW, BUSINESS-Services-Health & Welfare

The European Commission has published a comprehensive plan to fortify the cyber security of hospitals and healthcare providers across the EU. 

Recognising the increasing frequency of cyber attacks on healthcare systems, the EU Action Plan aims to safeguard patient care, improve response capabilities, and establish trust in digital healthcare solutions. 

The Plan is intended to demonstrate the EU's  a commitment to building a secure and resilient healthcare sector.  

The healthcare sector has witnessed a rise in cyber attacks in recent years. In 2023 alone, EU Member States reported 309 significant cyber security incidents targeting healthcare providers, more than any other critical industry.  These disruptions, which can delay medical procedures and endanger lives, highlight the pressing need for resilient cybersecurity strategies. 

Enhanced Prevention

The plan emphasises strengthening the healthcare sector’s preparedness to prevent cyber security incidents.  This includes: 

  • Guidance on Critical Cyber Security Practices: Hospitals and healthcare providers will receive tailored guidelines to implement best practices for cyber security. 
  • Cyber Security Vouchers: Financial assistance in the form of vouchers will be made available to micro, small, and medium-sized healthcare providers to enhance their cyber security capabilities. 
  • Learning Resources: New educational tools and training programs will be developed to equip healthcare professionals with the knowledge needed to navigate cybersecurity challenges. 

Improved Threat Detection: The EU Action Plan proposes the establishment of a Cybersecurity Support Centre for Hospitals and Healthcare Providers under the guidance of ENISA, the EU Agency for Cybersecurity.  

  • By 2026, the Centre will provide an EU-wide early warning system, offering near-real-time alerts about potential cyber threats. 

Effective Response to Cyber Attacks: To minimise the impact of cyber incidents, the Action Plan includes the following measures: 

  • A rapid response service under the EU Cybersecurity Reserve, leveraging private incident response providers to support healthcare organisations. 
  • Development of response playbooks to guide healthcare organisations in handling specific threats, such as ransomware. 
  • National cyber security exercises to strengthen incident response capabilities across Member States. 
  • Encouragement for Member States to mandate the reporting of ransom payments, enabling authorities to provide support and conduct follow-ups with law enforcement. 

Deterrence: To discourage cyber attacks on the EU healthcare systems, the plan includes the use of the Cyber Diplomacy Toolbox, a coordinated EU diplomatic response to malicious cyber activities.  

  • This framework aims to hold cyber threat actors accountable and protect critical healthcare infrastructure. 

Collaborative Implementation 

The success of the EU Action Plan will depend on collaboration amongst healthcare providers, Member States, and the cyber security community.  To ensure the plan is effective and addresses the needs of all stakeholders, the Commission will soon launch a public consultation open to citizens and industry experts. The feedback gathered will help refine the proposed measures, with specific actions scheduled for rollout in 2025 and 2026. 

Legislative Framework 

The EU Action Plan builds on existing EU legislation.  Healthcare providers are identified as a sector of high criticality under the NIS2 Directive, which works in tandem with the Cyber Resilience Act, a landmark EU regulation that mandates cyber security requirements for digital products.  

The recently established Cyber Emergency Mechanism under the Cyber Solidarity Act will play a crucial role in detecting, preparing for, and responding to cyber security threats. The initiative also supports the broader goal of creating a European Health Data Space, a framework designed to empower citizens with control over their health data while ensuring the security of sensitive information. 

Executive Vice-President for Tech Sovereignty, Security, & Democracy, Henna Virkkunen, emphasised the importance of resilience in healthcare systems: “We are launching an Action Plan to ensure that healthcare systems, institutions, and connected medical devices are resilient... Prevention is better than cure, so we need to prevent cyber-attacks from happening. But if they happen, we need to have everything in place to detect them and to quickly respond and recover.” 

By addressing cyber security challenges through prevention, detection, response, and deterrence, the plan lays the groundwork for a safer healthcare environment where technology empowers patients, enhances care, and supports professionals. 

EU Commision   |    IndustrialCyber   |    Cyber Express  |  SC Magazine  |    Infosecurity Magazine 

Image: Mart-Production

You Might Also Read: 

Protecting Patient Privacy: Cybersecurity Priorities For Healthcare:

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

 

Cyber Security Intelligence: Captured Organised & Accessible

 


 

« Thermodynamic Computing - A New Computer Architecture
Data Broker Discloses A Major Breach Of App User Data »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

Watch this webinar to hear security experts from Amazon Web Services (AWS) and SANS break down the myths and realities of what an NGFW is, how to use one, and what it can do for your security posture.

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

Resecurity

Resecurity

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

Bishop Fox

Bishop Fox

Bishop Fox is a leading authority in offensive security, providing solutions ranging from continuous penetration testing and attack surface management to product and application security assessments.

Cynet

Cynet

Cynet simplifies security by providing a rapidly deployed, comprehensive platform for detection, prevention and automated response to advanced threats with near-zero false positives.

EuroISPA

EuroISPA

EuroISPA is a pan European association of European Internet Services Providers Associations and the world’s largest association of ISPs.

One Identity

One Identity

One Identity delivers identity governance, access management, and privileged account management solutions that facilitate and secure your digital transformation.

V-Key

V-Key

V-Key is a global leader in software based digital security, providing solutions for mobile identity, authentication, authorization, and mobile payments for major banks.

Cyber Observer

Cyber Observer

Cyber Observer’s team specializes in providing corporate officers with comprehensive, visual, real-time performance overview, critical security control (CSC) analysis.

DeepCyber

DeepCyber

DeepCyber supports its customers, with an “intelligence-driven” approach, to improve their proactive detection and response "capability" of cyber threats.

ACM-CCAS

ACM-CCAS

ACM is a UKAS-accredited certification body helping businesses around the world perform to a higher standard. Our certifications include ISO 27001 and ISO 22301.

DarkLight

DarkLight

DarkLight is a cybersecurity platform that mimics human thinking at scale to build resiliency to Advanced Persistent Threats.

HSB

HSB

HSB offers insurance for equipment breakdown, cyber risk, data breach, identity recovery & employment practices liability.

Singular Security

Singular Security

Singular Security help public and private organizations minimize cybersecurity risk and pass their IT compliance audit.

Inveteck Global

Inveteck Global

Inveteck Global is a Ghana-based cyber security firm providing strategic guidance and technical solutions to all our clients to best serve their individual needs.

CWSI

CWSI

CWSI provide a full suite of enterprise mobility, security and productivity solutions to many of Ireland and the UK’s most respected organisations across a wide range of industry and public sectors.

Advantio

Advantio

Advantio offers a unique combination of technologies and managed, advisory and testing services to increase your cyber resilience and compliance.

OryxLabs

OryxLabs

OryxLabs provide advanced enterprise digital risk protection solutions. Learn more about how 24x7 continuous assessment, monitoring, and improvement can secure your network.

Sherweb

Sherweb

Sherweb are a marketplace of leading cloud solutions and value-added services delivered by a team of passionate experts invested in MSP growth.