Healthcare plays a vital role in society, safeguarding both individual well-being and public health. The sector’s wealth of sensitive patient data, essential medical operations, and significant financial resources make it a cornerstone of societal stability, which in turn draws attention from those seeking to exploit its value, such as cyber attackers.

In recent years, healthcare cyberattacks have surged to unprecedented levels, affecting institutions across the world. A 2021 global survey revealed that more than one-third of healthcare institutions had firsthand experience with cyber threats, with many forced to pay ransoms to regain access to critical systems. The frequency and severity of these incidents have only escalated in recent years.
Below are notable statistics and key events in recent years which highlight the evolving threat of healthcare cyberattacks:

• United States: In 2023, there were more than 1,500 recorded cyber incidents, resulting in $1.1 billion (~RM5 billion) in payments. Among the most severe was a ransomware attack on Ascension Healthcare, which disrupted operations at 120 hospitals for over a month. The incident cost the organisation $1.03 billion (~RM 4.63 billion) in total losses.

• Europe: A 2021 attack on Ireland’s Health Service Executive impacted 80% of its IT infrastructure, disrupting patient care and diagnostic services.

• Asia: In 2024, nearly 70% of healthcare institutions across the continent were targeted, marking a 60% increase from the previous year. As cyberattacks evolve, recovery efforts have become increasingly challenging, with fewer organisations able to restore operations within a week.

• Australia: A 2024 cyberattack on MediSecure, a healthcare technology company that provides electronic prescription services, exposed the personal and health data of 12.9 million individuals. Much of this stolen information remains available on the dark web, posing ongoing risks to affected individuals.

• Africa: In 2023, South Africa’s National Health Laboratory Services experienced a breach that exposed millions of sensitive health records. Outdated infrastructure and limited cybersecurity awareness make many healthcare systems across Africa particularly vulnerable to such attacks.

Cyber attackers are increasingly targeting network servers, which accounted for 68.2% of healthcare data breaches in 2023, up from 56.6% the previous year. This shift to advanced attacks moves beyond traditional methods, exploiting technical vulnerabilities in network servers to bypass defences and access sensitive data.
Moreover, third-party vendors have become a significant vulnerability. Many healthcare organisations rely on external partners for services ranging from medical supplies to logistics. However, these vendors may lack robust cybersecurity defencces, making them prime entry points, into larger healthcare organisations, for cyberattacks. In 2023, attacks on healthcare business associates surged by 287%, compromising data for nearly 50 million individuals.

The implications of cyber-attacks on healthcare systems are profound:

• Operational Disruption: Attacks often disrupt critical systems, such as electronic health records (EHRs) and diagnostic tools, causing delays in patient care and putting lives at risk. In some cases, due to these disruptions, patient information had to be manually recorded, increasing the risk of errors and compromising care quality.

• Financial Losses: Organisations may incur substantial costs from ransom payments and recovery efforts, which can result in significant revenue losses. For example, Change Healthcare paid a record $22 million (~RM100 million) ransom in 2024.

• Reputation Damage: Data breaches undermine trust among patients and stakeholders by exposing sensitive information, leading to long-lasting damage to the institution’s credibility and reputation.

• Regulatory Penalties: Non-compliance with data protection regulations can lead to substantial fines.

To counteract the growing threat, the healthcare sector must adopt a proactive approach:

• Enhanced Security Measures: Implement security protocols to safeguard critical systems and patient data, ensuring robust protection against unauthorised access and potential cyber threats.

• Staff Training: Regularly train employees to recognise and respond to cyber threats, such as phishing attempts.

• Vendor Oversight: Implement strict cybersecurity protocols for third-party vendors as they are prime entry points into larger healthcare organisations.

• Incident Response Planning: Develop comprehensive recovery procedures to minimise operational downtime and ensure continuity of patient care.

The healthcare industry stands at a crossroads, facing cyber threats that challenge its core mission of delivering care. By understanding the evolving tactics of cyberattacks and prioritising resilience, healthcare systems can better protect their operations, data, and, most importantly, the lives they serve. Securing healthcare systems goes beyond preventing breaches, it ensures the continuity of critical services in an increasingly digital world.

Not sure where to start? Reach out to us today and lets have a chat on how we can partner with you in your cybersecurity journey!