The Government Agency That Oversees HIPAA ‘Not Effective’ at Improving Cybersecurity, Report Finds

Telemedicine service online video call for doctor to actively chat with patient via remote healthcare consultant software . People can use app to contact doctors for virtual meeting from home .Telemedicine service online video call for doctor to actively chat with patient via remote healthcare consultant software . People can use app to contact doctors for virtual meeting from home .

The Government Agency That Oversees HIPAA ‘Not Effective’ at Improving Cybersecurity, Report Finds

December 19, 2024

United States
United States
United States
Healthcare Brew

Senior Counsel Leslie Bender spoke to Healthcare Brew discussing the rise in cyberattacks against healthcare systems in recent years and why the industry should be using a tool published in February that allows healthcare facilities to conduct self-audits of their cybersecurity standards.

The healthcare industry “should be” using the tool to test and audit its own cybersecurity standards, she told Healthcare Brew, adding that “it feels unfair to criticize the OCR for not doing something that it didn’t have the money to do.”

“Ransomware attacks on healthcare entities are really treasure troves of incredibly valuable information,” she said. “I think that’s why there are so many cyberattacks that target healthcare entities, and I don’t know how 91 people working for the OCR could prevent that.”

The materials on the Eversheds Sutherland website are for general information purposes only and do not constitute legal advice. While reasonable care is taken to ensure accuracy, the materials may not reflect the most current legal developments. Eversheds Sutherland disclaims liability for actions taken based on the materials. Always consult a qualified lawyer for specific legal matters. To view the full disclaimer, see our Terms and Conditions or Disclaimer section in the footer.

Services

Key contacts

lesliebender@eversheds-sutherland.com

Leslie C. Bender

Senior Counsel

Washington, DC, United States

Latest Insights

Latest News

  • client news
  • firm news
  • firm news
  • client news

Latest Events

  • virtual | June 09, 2026
  • virtual | June 16, 2026
  • virtual | June 23, 2026
  • virtual | September 10, 2026
Generic building in front of sun (1)

legal updates

June 03, 2026

Global Life Sciences & Healthcare Bulletin

shopping district

legal updates

May 29, 2026

Business meeting close up discussing data

podcasts and webcasts

May 29, 2026

Pay-Transparency-Waterdroplets-on-glass

legal updates

May 28, 2026

© Eversheds Sutherland 2026. All rights reserved. Eversheds Sutherland is a provider of legal and other services operating through various separate and distinct legal entities. For further information about these entities and Eversheds Sutherlands' structure please see the Legal Notice page of this website.

Eversheds Sutherland is the name and brand under which the members of Eversheds Sutherland Limited (Eversheds Sutherland (International) LLP and Eversheds Sutherland (US) LLP) and their respective controlled, managed and affiliated firms and the members of Eversheds Sutherland (Europe) Limited (each an "Eversheds Sutherland Entity" and together the "Eversheds Sutherland Entities") provide legal or other services to clients around the world. Eversheds Sutherland Entities are constituted and regulated in accordance with relevant local regulatory and legal requirements and operate in accordance with their locally registered names. The use of the name Eversheds Sutherland, is for description purposes only and does not imply that the Eversheds Sutherland Entities are in a partnership or are part of a global LLP. The responsibility for the provision of services to the client is defined in the terms of engagement between the instructed firm and the client. For further information about these Eversheds Sutherland Entities and Eversheds Sutherlands’ structure please see the Legal Notices page of this website.