A new report from Resilience outlines a growing cyber crisis in the U.S. healthcare sector, where ransomware attacks, vendor compromise, and human error continue to cause widespread disruption. In 2023, breaches exposed 168 million records, and the first half of 2025 has already seen extortion demands as high as $4 million.
Despite the mounting risk, cybersecurity remains a low priority for healthcare leadership. In a 2025 survey, only one in three executives listed it as a top concern. Many cited cost or compliance as bigger challenges. Nearly one in five said a cyberattack had already disrupted patient care, and more than half believe a fatal incident is inevitable in the next five years.
To improve resilience, researchers offers several key recommendations: such as Include all critical data types in tested backup strategies, Regularly test incident response plans under realistic conditions etc.
【MORE】