Maine Hospitals Face Cybersecurity Threats Amid Legislative Actions

Severity: Medium (Score: 57.8)

Sources: Maine, Wgme

Summary

The Maine House unanimously advanced a cybersecurity bill aimed at strengthening protections for hospitals following two significant cyberattacks last spring that affected five hospitals across the state. The attacks compromised communication systems and threatened patient care for weeks, impacting over 400,000 residents. The proposed legislation, LD 2103, mandates hospitals to adopt a cybersecurity plan aligned with best practices from national organizations, including the U.S. Department of Homeland Security. It includes requirements for timely notification of law enforcement during an attack, backup communication systems, and annual employee training. The bill's advancement comes after previous legislative efforts were rejected, highlighting ongoing concerns about the vulnerability of healthcare facilities to cyber threats. The bill is expected to face further votes in the House and Senate soon. Key Points: • Maine hospitals were targeted in cyberattacks that affected over 400,000 residents. • The proposed LD 2103 bill aims to enforce cybersecurity best practices in hospitals. • Previous legislative efforts to enhance hospital cybersecurity were rejected.

Key Entities

• Data Breach (attack_type)
• Central Maine Medical Center (company)
• Covenant Health (company)
• St. Joseph’s Hospital (company)
• St. Mary’s Hospital (company)