A major hospital group says FDA needs to step up and mandate cybersecurity for medical devices, a move intended to address risks related to legacy products that can't be updated or adequately patched as Congress considers steps to protect patients from cyber attacks. “The FDA must make clear that security measures to protect legacy devices are required, not optional,” writes the American Hospital Association in comments to the House Energy & Commerce Committee. “Unfortunately, the health care sector, including the...