As first reported by cybernews, a new analysis from Omega Systems paints a sobering picture of cybersecurity in healthcare. Following the massive Change Healthcare breach, which disrupted services for millions and left pharmacies and providers struggling for weeks, many healthcare leaders now see cyberattacks as not just an IT risk, but a direct threat to patient safety. In fact, 52% believe a cyberattack could result in patient fatalities within the next five years, and nearly 20% say such incidents have already impacted care delivery.
The report shows that 80% of healthcare organizations experienced a cyberattack in the past year, and more than a quarter report that at least half of their sensitive patient data was put at risk. Yet despite these alarming statistics, cybersecurity remains at the bottom of executive priorities—outranked by operational costs, compliance, and even patient data protection. Shockingly, 21% of healthcare leaders still don’t see cybersecurity as a critical business function, while many organizations lack effective response plans and rely on outdated systems ill-equipped to manage modern threats.
Phishing and ransomware continue to be common, affecting 48% and 34% of organizations respectively, but basic preparedness measures are often overlooked. Only 53% run phishing simulations, and one-third don’t regularly train employees. The report warns that as AI-enabled attacks become more sophisticated, healthcare IT teams must quickly adapt.
From safeguarding electronic health records to protecting connected medical devices, robust cybersecurity is now inseparable from quality clinical care and patient safety.
