HHS Updates RISC 2.0 Toolkit with New Cybersecurity Module for Hospitals

The U.S. Department of Health and Human Services (HHS) has updated its free RISC 2.0 toolkit to include a new cybersecurity module, enabling hospitals to evaluate digital threats alongside traditional hazards like hurricanes and power failures. The update was released by HHS’s Administration for Strategic Preparedness and Response (ASPR) as part of efforts to improve healthcare sector resilience. No specific technical details, release dates, or quantitative impacts were provided in the announcement. The toolkit is designed to help hospitals assess their cybersecurity exposure in alignment with broader risk management practices. The initiative follows recent high-profile cyber incidents in the healthcare industry, though no direct connection to events like the Change Healthcare breach was stated.