Stakeholders from the health care sector are urging Congress to pass bipartisan legislation introduced by Senators Gary Peters (D-MI) and Mike Rounds (R-SD) that would restore cybersecurity protections which expired on September 30, 2025. The proposed Protecting America from Cyber Threats Act aims to reauthorize a law that has enabled private companies to voluntarily share information about cyber threats with the Department of Homeland Security for the past decade.
This information sharing has played a role in preventing data breaches, protecting personal data, and strengthening federal responses to cyberattacks. Support for the bill comes from organizations such as Connected Health Initiative, Medical Device Manufacturers Association (MDMA), AdvaMedDx, Coastal Bend Regional Advisory Council, CHIME, Healthcare Information and Management Systems Society (HIMSS), McLaren Health Care, Healthcare Leadership Council, Integrated Women’s Health, DirectTrust, and the U.S. Healthcare & Public Health Sector Coordinating Council.
Brian Scarpelli, Executive Director of the Connected Health Initiative, stated: “The Connected Health Initiative supports Senators Gary Peters (D-M.I.) and Mike Rounds (R-S.D.) in their efforts to reauthorize crucial cybersecurity information sharing authorities. Their legislation, S. 2983, extends this critical program facilitating the timely sharing of cybersecurity threat indicators needed to strengthen the nation’s security posture as a whole. The healthcare ecosystem is uniquely vulnerable to cyber incidents, and the damage caused by them particularly severe, so the reasonable liability protections the legislation would reauthorize are desperately needed to ensure patient security and privacy. Crucially, S. 2983 would protect any cybersecurity information sharing that has occurred during the lapse in the program as well as future activities. We urge the Senate to swiftly pass this legislation and ensure that companies have the best tools and information to continue protecting patient data.”
Mark Leahey, President and CEO of MDMA added: “MDMA strongly supports S. 2983, the bipartisan ‘Protecting America from Cyber Threats Act,’ and we look forward to working with Congress to address the lapse in critical federal cybersecurity authorities that expired on September 30th. MDMA’s members represent the entire spectrum of medical technology innovators, and while they maintain the highest standards for cyber safety and security, they depend on the threat-information-sharing provisions in S. 2983 to fully collaborate with our partners across the healthcare ecosystem including the FDA, hospitals, and others. MDMA remains committed to working closely with Congress and the Administration to renew these essential authorities before any new cyber threats emerge.”
Zach Rothstein, Executive Director of AdvaMedDx said: “The voluntary sharing of cyber threat information is a fundamental component of the medtech industry’s commitment to protecting patient safety and the integrity of life-saving medical technologies. The Protecting America from Cyber Threats Act provides the continued essential legal framework that allows our members to securely collaborate with each other and with government partners, strengthening our collective defense against malicious cyber threats without fear of frivolous litigation. We applaud the bill’s sponsors and strongly urge Congress to act swiftly to pass this legislation, including the important provision for retroactive liability protection, to ensure the continued security and resilience of the U.S. healthcare system.”
Garrett Hagood from Coastal Bend Regional Advisory Council noted: “I strongly support S. 2983, the Protecting America from Cyber Threats Act. This 10-year extension preserves critical information-sharing authorities, provides retroactive liability protection, and strengthens the trust between government and industry. By reaffirming these protections, Congress is helping maintain strong collaboration to defend our nation from cyber threats. This legislation is especially important for the healthcare sector, where cyberattacks continue to increase in both frequency and complexity, making secure and timely information sharing essential to protecting patient care and public health.”
Mari Savickis at CHIME stated: “The College of Healthcare Information Management Executives (CHIME), a leading executive organization serving C-suite healthcare leaders…supports S. 2983…the Protecting America From Cyber Threats Act…We are deeply appreciative of Senator Peters’ and Senator Rounds’ commitment…To that end we support reauthorization…which have been vital for healthcare providers by enabling trusted…sharing of cyber threat intelligence…helping hospitals…and other healthcare providers detect…and respond…more effectively…”
Hal Wolf at HIMSS said: “HIMSS urges Congress to act swiftly to reauthorize crucial cybersecurity information sharing authorities and retroactively provide protections that strengthen healthcare cybersecurity…Reauthorizing…the legislation is essential for fostering trusted threat intelligence sharing…”
Philip Incarnati at McLaren Health Care commented: “In providing diverse medical services across multiple states we rely on information sharing of threat intel through various organizations including US Government…The provisions…and protections provided by…the bill enhance…the ability…to detect prevent…and respond…as well as reduce…the risks associated with sharing sensitive cybersecurity information…”
Maria Ghazal at Healthcare Leadership Council remarked: “Cyberattacks are no longer just data breaches—they’re direct threats to patient safety...The harm...is real growing...and deeply personal...The Protecting America from Cyber Threats Act is a vital step toward strengthening our national cyber defenses by improving coordination...This bipartisan legislation will help healthcare organizations detect...and prevent attacks before they compromise patient care...The Healthcare Leadership Council strongly supports this bill because protecting patients begins with protecting...the systems...that make their care possible.”
