« Information Technology
  

33 Percent of Healthcare IT Professionals Concerned About Data Breaches

Cyberattacks remain a threat to healthcare facilities.

By Jeff Wardon, Jr., Assistant Editor


Cyberattacks remain a real threat to healthcare facility operations as they can knock out IT systems, disrupt patient care and cost organizations millions of dollars. Keeping abreast of the current cyber threat trends is key to mounting an effective defense.  

According to Huntress’ 2025 report,  one-third of IT professionals reported that data breaches were their number one concern for 2025. Meanwhile, IT professionals also noted they were concerned about threats such as phishing (19 percent) and ransomware (15 percent). Supply chain attacks (five percent) were one of the least common concerns. 

The most common cyber incidents that organizations experienced in the last year were phishing attacks (40 percent). Other types included data breaches (20 percent), malware (19 percent), denial-of-service (DoS) attacks (12 percent) and ransomware attacks (12 percent). However, 37 percent of respondents reported no cybersecurity incidents whatsoever. 

Related Content: The Double-Edged Sword of AI in Healthcare Cybersecurity

Respondents said the biggest hurdles to adequate cybersecurity in healthcare include: 

  • Keeping up with evolving threats – 45 percent 
  • Data privacy concerns – 44 percent  
  • Regulatory compliance – 28 percent 
  • Third-party risk management – 28 percent 
  • Budget constraints – 26 percent 
  • Outdated systems – 24 percent 
  • Integration challenges – 21 percent 
  • Lack of employee cybersecurity awareness training – 20 percent 
  • Resistance to change from employees or leadership – 15 percent 
  • Difficulty hiring qualified cybersecurity professionals – 14 percent 

Improving the cybersecurity procedures for a healthcare organization is critical to successfully defending against cyber threats. Huntress recommends the following methods for protection: 

  • Implement multi-factor authentication (MFA) 
  • Regularly conduct cybersecurity training 
  • Use endpoint detection and response (EDR) solutions 
  • Patch systems regularly 
  • Segment networks 
  • Conduct routine security assessments 
  • Back up data regularly 
  • Develop a cyber incident response plan 

Jeff Wardon, Jr., is the assistant editor of the facilities market. 



March 20, 2025


Topic Area: Information Technology , Security

Recent Posts

Should We Be Testing Toilet Water in Patient Restrooms?

Research suggests transmission of Legionella pneumophila through toilet flushing should be considered when investigating a Legionnaires’ disease case.

Healthcare Union Petitions for Increased Staff Safety at HCA Florida Hospitals

The petition follows a recent nurse assault and 160 calls to law enforcement this year at one hospital alone.

HGA Announces Completion of the Jeffrey and Patricia Cole Pavilion

The new outpatient facility is at the Cleveland Clinic’s Cole Eye Institute in Cleveland, Ohio.

Healthcare Facilities Look to Future-Proof Facilities

New buildings aren’t going to stay new forever. It is up to designers to consider the future with their designs

Yale New Haven Health Experiences Data Breach

At no point did this incident impact their ability to provide patient care

 
 


FREE Newsletter Signup Form

News & Updates | Webcast Alerts
Building Technologies | & More!

 
 
 


All fields are required. This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.