Launch of Cyber Resilience Readiness Program for Healthcare Sector

Severity: Medium (Score: 51.9)

Sources: www.jointcommission.org, Aha, www.globenewswire.com, Markets.Businessinsider

Summary

On May 4, 2026, the Joint Commission and the American Hospital Association (AHA) announced the Cyber Resilience Readiness (CRR) program aimed at enhancing the ability of hospitals and health systems to maintain clinical operations during cyber-related outages. The initiative responds to a significant rise in cyber threats targeting the healthcare sector, with 642 incidents reported in 2025, including 460 ransomware attacks. The CRR program emphasizes operational readiness and patient safety rather than just IT recovery, focusing on maintaining safe patient care during extended technology outages. The program includes a voluntary self-assessment tool for organizations to evaluate their preparedness and resilience against cyber disruptions. This initiative is a response to the increasing sophistication of cybercriminals and aims to ensure that patient care continues even when critical technologies fail. The program was developed over 18 months in collaboration with various healthcare organizations and is now available for implementation. Key Points: • The Cyber Resilience Readiness program was launched to help healthcare organizations maintain clinical continuity. • In 2025, healthcare was the most targeted sector for cyber threats, with 642 reported incidents. • The program includes a self-assessment tool to evaluate readiness for cyber-related technology outages.

Key Entities

• Data Breach (attack_type)
• Ransomware (attack_type)
• United States (country)
• aha.org (domain)
• Healthcare (industry)
• Public Health (industry)