Why Google, Microsoft can’t fix health care’s cybersecurity problem

Facing a worsening cybersecurity crisis in health care, the Biden administration has followed a familiar political playbook: Call the biggest names in technology and secure promises, and money, to fix the problem.

Microsoft and Google followed through this week with offers of training and software discounts to help the nation’s rural hospitals secure their data systems. But a big question remains: Will their combined efforts really stem the rising tide of ransomware attacks?

Information security experts and researchers interviewed by STAT — even though buoyed by the prospect of more investments in cybersecurity — said the initiative falls well short of what’s needed to keep Americans’ health data safe and prevent breakdowns that frequently cripple health care organizations. Some said it focuses on marginally relevant upgrades and promotes the interest of big tech companies over cybersecurity firms with a more specific focus on the vulnerabilities in health care.

STAT+ Exclusive Story

Already have an account? Log in

This article is exclusive to STAT+ subscribers

Unlock this article — plus daily market-moving biopharma analysis — by subscribing to STAT+.

Already have an account? Log in

Already have an account? Log in

Individual plans

Group plans

View All Plans