Abbott Targets Chinese Med Devices in Cyber Crackdown

Texas Gov. Greg Abbott issued a directive on March 9, 2026, targeting cybersecurity vulnerabilities in Chinese-manufactured patient monitoring devices used in state-owned medical facilities. The letter, addressed to the Texas Health and Human Services Commission, Department of State Health Services, Texas Cyber Command, and public university systems, responds to recent alerts from the U.S. Food and Drug Administration and Cybersecurity and Infrastructure Security Agency about flaws in devices like the Contec CMS8000 and Epsimed MN-120.[1][3][4] These vulnerabilities could enable unauthorized actors to remotely access and exfiltrate sensitive patient health information, Abbott warned, declaring, 'I will not let Communist China spy on Texans.'[1][4] Abbott mandated a comprehensive review of all network-connected medical devices in state facilities, requiring agencies to catalog equipment, update cybersecurity policies, and ensure new purchases comply with his 2014 Executive Order GA-48, which restricts technologies from adversarial nations like China, including TikTok.[1][4] The Texas Cyber Command must evaluate additions to the state's prohibited technology list, which already flags high-risk vendors.[2] Agencies have until April 17, 2026, to submit compliance reports and recommendations to the governor's office.[1][4] This action builds on a broader expansion of Texas' 'do not buy, do not deploy' prohibited technology list, recently updated following a Texas Cyber Command threat assessment. New entries include consumer brands TP-Link, Hisense, and TCL, alongside AI firms like SenseTime, Megvii, and iFlytek; surveillance companies Uniview and NucTech; drone maker Autel; battery giant CATL; and e-commerce players Alibaba, Xiaomi, Baidu, PDD (Pinduoduo/Temu), and Shein.[2] The list targets products posing risks to government networks, driven by concerns over Chinese components in critical infrastructure like the power grid.[2] Abbott framed the directive as a defense of privacy and national security, aligning with Texas' aggressive stance against foreign adversaries including China, Iran, Russia, and North Korea.[2][3] He plans to propose legislation in the next session to shield Texans' medical data from hostile actors.[1][4] The move follows federal FDA and CISA notices from last year, highlighting persistent risks in imported medical tech.[2][4] Public university systems must also audit their facilities, ensuring safeguards protect personal health information amid rising espionage fears.[1][3] Texas officials emphasized the paramount importance of securing medical data, with Abbott's office amplifying the letter on X to underscore the spying threat.[4]