Alarming Statistics on Ransomware in the Healthcare Industry

Alarming Statistics on Ransomware in the Healthcare Industry

For the healthcare industry, COVID-19 has brought about a massive shift in the digital landscape. Healthcare institutions have been forced to adopt changes to keep pace with the needs of the industry, such as the adoption of SaaS, remote working and BYOD (bring your own device) policies. These new developments had not, until recently, been a part of organizations’ enterprise risk management plan. Secondly, cybersecurity has not been able to keep pace with the changes, revealing vulnerabilities that hospitals need to react to after being breached. Read more about how Universal Health Services suffered $67 in losses.

Ponemon Research Report Findings

 Healthcare data with PII (personal identifiable information) is highly prized on the Dark Web and has caused the healthcare sector to come under relentless cybersecurity attacks. The Ponemon Research Report evaluated the impact of ransomware on 597 healthcare organizations during COVID-19 and the results have been scary.

69% of respondents stated that a successful breach led to a longer stay for patients. Apart from that, the same percentage of respondents revealed that attacks caused the hospital to delay medical procedures, adversely affecting patient outcomes. Not surprisingly, 65% of participants shared that the attack led patients to transfer to another facility, causing loss in business as well. More than 35% of organizations surveyed stated that a ransomware attack increased complications in medical procedures, and a fifth of respondents stated that the hospital witnessed an increase in patient mortality on account of the attack.    

Web Application Security for Pharma and Healthcare Report 2021 Findings

 When it comes to healthcare apps, the Web Application Security for Pharma and Healthcare Report 2021 reveals interesting findings. Key among them is that 85% of the top 20 apps used in pharma and healthcare are critically exposed, being an easy target for breaches. Out of the 6069 web apps used by U.S. healthcare organizations, 24% run on vulnerable components. Also, U.S. healthcare organizations have a larger attack surface area, with an average risk exposure score of 41%, versus 33% in the EU. 

In Conclusion 

When it comes to healthcare, authorities must address security vulnerabilities and build a plan to address and patch their digital assets. With hackers relentlessly targeting hospitals, it is not just medical records that are at risk, but patient lives, too. What’s more? Healthcare organizations may also need to face lawsuits as a result of ransomware, for failing to put sufficient processes in place. 

You may also like to read our blog post on healthcare statistics in 2020 to compare where we stand today.

Our Whitepapers


Your step-by-step guide to achieving Healthcare Compliance and Data Risk Security.