According to The HIPAA Journal, a former FBI Deputy Cyber Chief has publicly advocated for designating healthcare ransomware actors as terrorism threats. This position represents a notable shift in federal framing: ransomware attacks on hospitals have historically been treated as cybercrime rather than acts of terrorism, despite their direct impact on patient care and mortality risk.
The distinction matters operationally. Terrorism classification would potentially expand investigative authorities, increase resource allocation, and signal that hospital system compromise crosses a national security threshold. Healthcare facilities remain high-value targets for ransomware operators seeking rapid ransom payouts—hospital networks cannot simply "go offline" without immediate harm to operations and patient safety.
The timing of this call reflects observable pressure: ransomware against U.S. healthcare has remained a persistent vulnerability, with attackers exploiting legacy systems, staffing constraints, and the sector's operational dependence on continuous uptime. Hospitals cannot encrypt backups or segment networks as aggressively as other industries without risking life-safety system failures.
What remains unclear from available reporting: whether this represents an informal position or signals potential policy movement within current federal agencies. No announcement of formal reclassification has been reported. The call itself, however, indicates senior cybersecurity officials view the current legal and operational response framework as insufficient.
For preparedness purposes, the signal is worth monitoring. If this recommendation gains traction within DOJ or DHS, it could precede expanded enforcement action, increased hospital security audits, or mandatory reporting expansions. It may also affect insurance underwriting and cyber liability frameworks for healthcare providers.
