Report: Healthcare Accounted for 45% of All Ransomware Attacks in 2017 | Healthcare Informatics Magazine | Health IT | Information Technology Skip to content Skip to navigation

Report: Healthcare Accounted for 45% of All Ransomware Attacks in 2017

February 22, 2018
by Rajiv Leventhal
| Reprints

Healthcare fell victim to more ransomware attacks than any other industry in 2017, according to a new report from global cybersecurity insurance company Beazley.

The report, which looked at more than 2,600 data incidents in 2017, spanning several industries, noted that ransomware remained a constant threat in 2017, including two notable worldwide attacks—WannaCry and NotPetya (though as the report clarified, the NotPetya malware was suspected to be the result of Russia weaponizing an existing version of ransomware for what appears to have been an attack on Ukraine’s infrastructure).

As such, the report found that 45 percent of all ransomware attacks studied in 2017 were in the healthcare sector. The next highest industry for volume of ransomware attacks were financial (12 percent) and professional services (12 percent). Overall, the rise of ransomware attacks across all industries continues to be a significant concern; the report revealed an 18-percent increase in ransomware incidents in 2017.

What’s more, of the more than 2,600 breach incidents studied, hacks or malware accounted for 36 percent of them; followed by accidental disclosure at 28 percent; and then insider and social engineering, both accounting for 10 percent.

Further regarding healthcare, the report noted that the Department of HHS for the Office Civil Rights (OCR) heightened its activity in 2017 with nine resolution agreements enforced against healthcare organizations and higher post-breach monetary payments than imposed previously. The average settlement amount that a breached organization agreed to pay increased significantly in 2016, although the total amount of breach penalty money did decline from 2016 to 2017. As the report stated, “OCR has more resources at its disposal and far less patience for HIPAA non-compliance.”

Katherine Keefe, global head of BBR Services said in a statement, “Criminals are intent on stealing data or extorting cash and their methods are becoming more sophisticated by the day. Wherever weaknesses exist—in systems, processes or simple human fallibility—every organization regardless of sector and size is vulnerable.”

Get the latest information on Health IT and attend other valuable sessions at this two-day Summit providing healthcare leaders with educational content, insightful debate and dialogue on the future of healthcare and technology.

Learn More



Research: Precision Medicine May Improve Survival in Late-Stage Cancer, Lower Costs

A precision medicine study conducted by researchers from Intermountain Precision Genomics and Stanford University School of Medicine indicates that precision oncology may improve overall survival and lower healthcare costs for advanced cancer patients.

Study: Researchers Use EHR Data to Predict Future Chronic Opioid Use

Researchers at the University of Colorado Anschutz Medical Campus are working to develop statistical models to better predict which patients will be prescribed opioid medications long-term following discharge from a hospital stay.

ONC Avoids 2018 Budget Cuts in New Spending Bill

The Office of the National Coordinator for Health IT’s (ONC) funding for 2018 will hold steady through September, at $60 million, as part of a House spending bill that was passed on Thursday.

Global Survey: Nearly Half of Physicians are Not Aware of Blockchain Technology

A survey, conducted by SERMO of 3,700 physicians across the globe, found that nearly half (47 percent) of polled physicians said that they were not aware of blockchain technology.

Wyoming Department of Health to Form Statewide HIE

Wyoming Department of Health plans to form a statewide, medical community-owned health information exchange (HIE), called the Wyoming Frontier Information Exchange (WYFI).

Four Organizations Plan to Form National Health IT Safety Collaborative

Four healthcare- and patient safety-focused organizations have indicated plans to establish a national health IT safety collaborative and are urging the Agency for Healthcare Research and Quality (AHRQ) and the Office of the National Coordinator for Health IT (ONC) to support their efforts.