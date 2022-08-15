Survey reveals that almost half of hospitals have been attacked with ransomware, and that 76% of victimized hospitals were attacked 3 or more times.

NEW YORK, Aug. 15, 2022 /PRNewswire/ -- Cynerio, the leading provider of healthcare IoT cybersecurity, today released a report conducted in partnership with the Ponemon Institute that examines the current impacts of cyberattacks on healthcare facilities and network-connected IoT and medical devices. The report details multiple alarming trends including widespread and repeated attacks, financial losses measured in the millions, and frequent failures to take basic cybersecurity measures.

43% of hospitals experienced at least one ransomware attack, and 24% of attacks resulted in increased mortality rates.

The Insecurity of Connected Devices in HealthCare 2022 Report surveyed experts in leadership positions at 517 healthcare systems throughout the United States. Key findings include:

Cyberattacks Are Frequent, Recurring, and Adversely Impact Patient Care

56% of respondents stated their organizations experienced one or more cyberattacks in the past 24 months involving IoMT/IoT devices. Among those, 58% averaged 9 or more cyberattacks during that time.

45% of these respondents report adverse impacts on patient care, and 53% percent of those report adverse impacts resulting in increased mortality rates.

Perceived Risk in IoT/ IoMT Devices Is High, but Proactive Security Actions and Accountability Are Not

71% of respondents rated the security risks presented by IoT/IoMT devices as high or very high, while only 21% report a mature stage of proactive security actions.

Of the 46% who performed well-known and accepted procedures such as scanning for devices, only 33% of these respondents keep an inventory of the devices that were discovered.

Ransomware Is a Vicious, Profitable Cycle

47% of those experiencing an attack resulted in a ransom being paid. 32% of the ransoms paid fell in the range of $250k - $500k.

"It's clear that cyberattackers have increasingly focused their efforts on hospitals since 2020," said Chad Holmes, Security Evangelist at Cynerio. "What had been unclear was the frequency and resulting damage of their attacks. By teaming with Ponemon Institute, we have collected feedback from hundreds of hospitals and presented a clear picture of the issues they're facing, both in terms of financial losses and impact to patient care. Ultimately, our aim for this data is to inform and expedite improved cybersecurity funding, training, and policy creation for all healthcare providers."

The report further details a range of financial impacts, attack types, and detailed sentiments surrounding investments made towards IoT/IoMT security.

"Until recently, the wide scale of cyberattacks on healthcare systems was difficult to measure and typically spoken of anecdotally," said Larry Ponemon, founder and chairman of the Ponemon Institute. "Our team at Ponemon Institute is proudly pioneering research with organizations like Cynerio to better define the risks hospitals and their patients confront. We hope this report enables healthcare leaders, policymakers and device manufacturers to more effectively address the cybersecurity threats they encounter."

To view the full report and download the complete findings: http://www.cynerio.com/ponemon-survey-insecurity-of-connected-devices-in-healthcare-2022

