Presentation of the CaRE | program Agency for Digital Health

Health is experiencing a veritable boom in digital usage, from private practices to hospitals. In fact, cyber malware risks are also increasing. According to ANSSI, healthcare is the third sector most affected by cyber attacks, after local authorities and VSE/SMEs. Reports sent by CERT Santé show that the threat level is not weakening.

In recent months, massive attacks have targeted some healthcare facilities and had direct consequences on the organization of services and patient care. Returning to normal can take several months and often requires significant human and financial investment for victims.

Aurélien ROUSSEAU, Minister of Health and Prevention, and Jean-Noël BARROT, Plenipotentiary of the Minister responsible for the digital area, went to the Hospital Center (CH) in Versailles on Monday 18 December 2023 to present the action of the Ministry of Health and Prevention to protect medical facilities from cyber threat and review the impact of the attack suffered by Versailles CH on December 3, 2022.

A working group bringing together field experts has been working for several months at the minister’s request to draw up an unprecedented action plan to strengthen the cyber security of medical facilities and health-social structures.

This action plan, called CaRE, aims to accelerate the modernization of hospital information systems in the face of threats and permanently strengthen the resilience of healthcare structures.
With €250 million by 2025, out of a total investment target of €750 million by 2027, the program pursues a two-fold objective:

    • prevent attacks from succeeding,
    • to enable businesses to recover as quickly as possible.

At the end of 2023, Minister Aurélien ROUSSEAU announced the first call for projects with a sum of €60 million, which will allow businesses to fund so-called “cyber remediation” plans to respond to vulnerabilities that can be exploited by attackers and reduce the risk of disruption and the spread of malicious software to the establishment’s information system.

All actions carried out under the CaRE program are listed in the action plan and summary.

Leave a Comment