Email-Related Cyber Attacks a Top Concern for Providers | Healthcare Informatics Magazine | Health IT | Information Technology Skip to content Skip to navigation

Email-Related Cyber Attacks a Top Concern for Providers

December 12, 2017
by Rajiv Leventhal
| Reprints

U.S. healthcare providers overwhelmingly rank email as the top source of a potential data breach, according to new research from email and data security company Mimecast and conducted by HIMSS Analytics.

The data from the survey revealed that 78 percent of respondents have already experienced an email-related cyberattack in the form of ransomware or malware, or both, in the past 12 months—in many cases with more than a dozen instances. Not surprisingly, based on these findings, 87 percent expect email-related security threats to increase or significantly increase in the future, researchers said. The study specifically examined perspectives from 76 IT professionals responsible for information security, representing a variety of healthcare provider facilities.

Reflecting on recent high profile attacks, such as WannaCry and Petya, which in some cases shut down entire hospital operations, 83 percent of respondents said that ransomware is the most concerning type of email-related threat, followed by other sophisticated threats in this order: malware, targeted attacks such as spear-phishing, and business email compromise. What’s more, 97 percent of healthcare providers said they have a high level of concern about cybersecurity and resilience.

Further, the vast majority of respondents, 93 percent, rated email as mission critical to their organization—and almost half cannot live with email downtime. Additionally, four out of five respondents said they use email to send protected health information (PHI). But the good news is that these same organizations are working on a variety of initiatives to build their cyber resilience strategy. The top three resilience initiatives are preventing attacks (94 percent), training employees (90 percent), and securing email (77 percent), according to the research.

“This study confirms that no healthcare provider is immune to this growing threat of email-related cyber attacks. While the results show that larger providers are being hit harder, especially with ransomware, these same organizations are also the ones leading the charge in defining industry best practices to address these threats,” Bryan Fiekers, senior director, HIMSS Analytics, said in a statement.

Get the latest information on Health IT and attend other valuable sessions at this two-day Summit providing healthcare leaders with educational content, insightful debate and dialogue on the future of healthcare and technology.

Learn More



Intermountain Healthcare Launches Study to Unlock Genomic Data

Researchers from the Salt Lake City, Utah-based Intermountain Healthcare have announced a long-term prospective study that they think has the potential to help physicians and others unlock genomic data.

UNC Health Care Receives HIMSS Analytics Stage 7 Designation

UNC Health Care, an integrated health care system based in Chapel Hill, N.C., has achieved Stage 7 designation on the HIMSS Analytics’ Electronic Medical Record Adoption Model (EMRAM).

FDA Announces Plan to Advance Medical Device Safety and Cybersecurity

The Food and Drug Administration (FDA) has announced new proposals aimed at advancing medical device cybersecurity, including placing new responsibilities on manufacturers, both before and after their devices hit the market.

Black Book: 9 in 10 Small Practices Not Optimizing Advanced EHR Functionalities

Eighty-eight percent of small practices of six or less practitioners still aren't optimizing advanced EHR (electronic health record) tools such as patient engagement, secure messaging, decision support and electronic data sharing, according to the latest Black Book survey

Penn., N.J. Health Systems Form Clinical Research Consortium

Six health systems in New Jersey and Pennsylvania have announced the founding of a nonprofit clinical research consortium – Partners in Innovation, Education, and Research (PIER Consortium) to streamline clinical trials.

Report: Global Digital Health VC Funding Hits Record $2.5B in Q1 2018

Venture capital funding into digital health companies in the first quarter of 2018 surged to a record $2.5 billion raised in 187 deals from $1.7 billion in 192 deals in the fourth quarter of 2017, according to a report from Mercom Capital Group