33 Percent of Healthcare IT Professionals Concerned About Data Breaches

Cyberattacks remain a threat to healthcare facilities.

By Jeff Wardon, Jr., Assistant Editor


Cyberattacks remain a real threat to healthcare facility operations as they can knock out IT systems, disrupt patient care and cost organizations millions of dollars. Keeping abreast of the current cyber threat trends is key to mounting an effective defense.  

According to Huntress’ 2025 report,  one-third of IT professionals reported that data breaches were their number one concern for 2025. Meanwhile, IT professionals also noted they were concerned about threats such as phishing (19 percent) and ransomware (15 percent). Supply chain attacks (five percent) were one of the least common concerns. 

The most common cyber incidents that organizations experienced in the last year were phishing attacks (40 percent). Other types included data breaches (20 percent), malware (19 percent), denial-of-service (DoS) attacks (12 percent) and ransomware attacks (12 percent). However, 37 percent of respondents reported no cybersecurity incidents whatsoever. 

Related Content: The Double-Edged Sword of AI in Healthcare Cybersecurity

Respondents said the biggest hurdles to adequate cybersecurity in healthcare include: 

  • Keeping up with evolving threats – 45 percent 
  • Data privacy concerns – 44 percent  
  • Regulatory compliance – 28 percent 
  • Third-party risk management – 28 percent 
  • Budget constraints – 26 percent 
  • Outdated systems – 24 percent 
  • Integration challenges – 21 percent 
  • Lack of employee cybersecurity awareness training – 20 percent 
  • Resistance to change from employees or leadership – 15 percent 
  • Difficulty hiring qualified cybersecurity professionals – 14 percent 

Improving the cybersecurity procedures for a healthcare organization is critical to successfully defending against cyber threats. Huntress recommends the following methods for protection: 

  • Implement multi-factor authentication (MFA) 
  • Regularly conduct cybersecurity training 
  • Use endpoint detection and response (EDR) solutions 
  • Patch systems regularly 
  • Segment networks 
  • Conduct routine security assessments 
  • Back up data regularly 
  • Develop a cyber incident response plan 

Jeff Wardon, Jr., is the assistant editor of the facilities market. 



March 20, 2025


Topic Area: Information Technology , Security


Recent Posts

Must Know Recalls of 2025

For the safety of our readers, Healthcare Facilities Today has closely followed all recall notices related to the industry.


Sustainability as a Baseline in Healthcare Facilities

Hospitals can balance costs, build resilience and learn from global models for sustainable design to further their green goals.


Comanche County Memorial Hospital and Southwestern Medical Center Join to Form Partnership

The partnership will go into effect by the end of December 2025.


Choosing a Disinfectant That Kills Biofilm

Bacteria form biofilms in pipes from which cells can be released during sink use and spread outside the drains in droplets or as aerosols.


Third-Party Data Breach Case Underscores Need for Cyber Risk Management

Plaintiffs alleged negligence in safeguarding patient data; defendants denied wrongdoing but settled to avoid litigation costs.


 
 


FREE Newsletter Signup Form

News & Updates | Webcast Alerts
Building Technologies | & More!

 
 
 


All fields are required. This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.