Email-Related Cyber Attacks a Top Concern for Providers | Healthcare Informatics Magazine | Health IT | Information Technology Skip to content Skip to navigation

Email-Related Cyber Attacks a Top Concern for Providers

December 12, 2017
by Rajiv Leventhal
| Reprints

U.S. healthcare providers overwhelmingly rank email as the top source of a potential data breach, according to new research from email and data security company Mimecast and conducted by HIMSS Analytics.

The data from the survey revealed that 78 percent of respondents have already experienced an email-related cyberattack in the form of ransomware or malware, or both, in the past 12 months—in many cases with more than a dozen instances. Not surprisingly, based on these findings, 87 percent expect email-related security threats to increase or significantly increase in the future, researchers said. The study specifically examined perspectives from 76 IT professionals responsible for information security, representing a variety of healthcare provider facilities.

Reflecting on recent high profile attacks, such as WannaCry and Petya, which in some cases shut down entire hospital operations, 83 percent of respondents said that ransomware is the most concerning type of email-related threat, followed by other sophisticated threats in this order: malware, targeted attacks such as spear-phishing, and business email compromise. What’s more, 97 percent of healthcare providers said they have a high level of concern about cybersecurity and resilience.

Further, the vast majority of respondents, 93 percent, rated email as mission critical to their organization—and almost half cannot live with email downtime. Additionally, four out of five respondents said they use email to send protected health information (PHI). But the good news is that these same organizations are working on a variety of initiatives to build their cyber resilience strategy. The top three resilience initiatives are preventing attacks (94 percent), training employees (90 percent), and securing email (77 percent), according to the research.

“This study confirms that no healthcare provider is immune to this growing threat of email-related cyber attacks. While the results show that larger providers are being hit harder, especially with ransomware, these same organizations are also the ones leading the charge in defining industry best practices to address these threats,” Bryan Fiekers, senior director, HIMSS Analytics, said in a statement.

Get the latest information on Cybersecurity and attend other valuable sessions at this two-day Summit providing healthcare leaders with educational content, insightful debate and dialogue on the future of healthcare and technology.

Learn More



Study: Inaccuracies in EHR Problem Lists Pose Problems for Risk Adjustment

Inaccuracies in EHR problem list–based comorbidity data can lead to incorrect determinations of case mix, according to a study that took place at two southern California Veterans Affairs (VA) medical centers.

Survey: 42 Percent of Companies Have Experienced Ransomware Attacks

The percentage of global companies reporting financially motivated cyber-attacks has doubled over the past two years, with 50 percent of surveyed companies associating ransom as the leading motivation for attacks over other attacks, including insider threats, hacktivism and competition, according to a report by Radware.

Allscripts Acknowledges Ransomware Attack, Says Impact is “Limited”

Health IT vendor Allscripts has acknowledged that it is investigating a ransomware incident that has impacted a limited number of its applications.

AHRQ to Fund Patient Safety Learning Laboratories

The federal Agency for Healthcare Research Quality plans to spend up to $5 million in fiscal 2018 to support as many as eight patient safety learning laboratories.

RCM Global Software Market to Hit $43.3B by 2022, Report Finds

The global market for healthcare revenue cycle management software is estimated to reach $43.3 billion by the end of 2022, according to a report from Future Market Insights (FMI).

Global Open Source HIT Project Gets $1M Donation From Cryptocurrency Philanthropy

OpenMRS, Inc., an open source medical records platform used in developing countries, has received a $1 million donation from the Pineapple Fund, an $86 million cryptocurrency philanthropy created by an anonymous donor known only as “Pine.”