• Skip to main content
  • Skip to secondary menu
  • Skip to primary sidebar
  • Skip to secondary sidebar
  • Skip to footer

  • Opinion
  • Health IT
    • Behavioral Health
    • Care Coordination
    • EMR/EHR
    • Interoperability
    • Patient Engagement
    • Population Health Management
    • Revenue Cycle Management
    • Social Determinants of Health
  • Digital Health
    • AI
    • Blockchain
    • Precision Medicine
    • Telehealth
    • Wearables
  • Life Sciences
  • Investments
  • M&A
  • Value-based Care
    • Accountable Care (ACOs)
    • Medicare Advantage

Healthcare Under Attack: Ransomware Groups Increasingly Target Hospitals and Clinics

by Fred Pennic 01/22/2025 Leave a Comment

  • LinkedIn
  • Twitter
  • Facebook
  • Email
  • Print
Image by freepik

What You Should Know: 

– Black Kite, a provider of third-party cyber risk intelligence, has released new data revealing a disturbing trend: ransomware groups are disproportionately targeting healthcare organizations. 

– The research, conducted by the Black Kite Research Intelligence Team (BRITE), identifies specific ransomware groups and their preferred targets within the healthcare sector, highlighting the urgent need for enhanced cybersecurity measures.

Top Ransomware Groups Targeting Healthcare

According to the report, Everest and Monti are the two most prominent ransomware groups targeting healthcare, with 25% and 20.8%, respectively, of their victims belonging to this sector. Other high-volume groups like INC Ransom (21.7%) and BianLian (15%) also demonstrate a strong focus on healthcare, posing a significant threat to hospitals, clinics, and other healthcare providers.

Physicians’ Offices and Hospitals Most Vulnerable

Within the healthcare sector, physicians’ offices are the most frequent targets, accounting for 25% of ransomware victims. General medical and surgical hospitals are the second most targeted group (22%), followed by other healthcare providers such as dentists and outpatient centers.

The Change Healthcare Attack: A Tipping Point

The report identifies the high-profile Change Healthcare attack as a turning point in the ransomware landscape. This incident exposed vulnerabilities in the traditional ransomware group structure and led to a shift towards more aggressive, affiliate-dominated models.

While older ransomware groups often avoided organizations with high human risk factors, today’s groups prioritize ease of access and ransom potential, often disregarding ethical considerations. This makes healthcare organizations, with their critical data and systems, prime targets.

“The fallout from Change Healthcare fundamentally altered how ransomware groups operate, making healthcare organizations prime targets,” said Ferhat Dikbiyik, chief research and intelligence officer at Black Kite. “Threat actors have refined their tactics to maximize efficiency, evade law enforcement, and increase their chances of securing ransoms. These shifts in both tactics and target criteria have made ransomware attacks more frequent, unpredictable, and strategically devastating, especially in the healthcare indusry.”

Ransomware Vulnerability by Size

BRITE’s research provides a detailed analysis of the ransomware ecosystem, highlighting how these groups select their victims. Factors such as technical vulnerabilities, industry profile, and the likelihood of paying a ransom all play a role in target selection.

Small healthcare businesses with less than $20M in revenue are particularly vulnerable due to limited resources and weaker security postures. However, large organizations with over $100M in revenue are also at risk due to their perceived ability to pay substantial ransoms.

Protecting Healthcare Organizations from Ransomware Attacks

In this increasingly hostile cyber landscape, healthcare organizations must take proactive steps to protect themselves from ransomware attacks. The consequences of a successful attack can be devastating, disrupting operations, compromising patient data, and even putting lives at risk.

BRITE recommends several key strategies for mitigating ransomware risk:

  • Continuous monitoring: Regularly assess systems for vulnerabilities, including unpatched software, compromised credentials, and missing security controls.
  • Vendor and supplier ecosystem monitoring: Evaluate the security posture of third-party vendors and suppliers to prevent supply chain attacks.
  • Robust cyber hygiene practices: Implement strong passwords, multi-factor authentication, and regular data backups.
  • Layered security approach: Combine multiple security measures to create a comprehensive defense strategy.

  • LinkedIn
  • Twitter
  • Facebook
  • Email
  • Print

Tagged With: Cybersecurity, Healthcare Ransomware

Tap Native

Get in-depth healthcare technology analysis and commentary delivered straight to your email weekly

Reader Interactions

Primary Sidebar

Subscribe to HIT Consultant

Latest insightful articles delivered straight to your inbox weekly.

Submit a Tip or Pitch

Featured Interview

Reach7 Diabetes Studios Founder Chun Yong on Reimagining Chronic Care with a Concierge Medical Model

Most-Read

HHS Finalizes HTI-4 Rule: Prior Authorization & E-Prescribing Interoperability

HHS Finalizes HTI-4 Rule: Prior Authorization & E-Prescribing Interoperability

Meaningful Use Penalties_Meaningful Use_Partial Code Free_Senators Urge CMS to Establish Clear Metrics for ICD-10 Testing

CMS Finalizes TEAM Model: A New Era of Value-Based Surgical Care

White House Event Unveils CMS Health Tech Ecosystem Initiative

White House Event Unveils CMS Health Tech Ecosystem Initiative

Digital Health Faces Q2'25 Pullback: Funding Falls to 5-Year Low, But AI Dominates and $1B+ IPOs Emerge

Healthcare Investment Shifts in 1H 2025: AI Remains a Bright Spot Amidst Fundraising Decline

Digital Health Faces Q2'25 Pullback: Funding Falls to 5-Year Low

Digital Health Faces Q2’25 Pullback: Funding Falls to 5-Year Low

Beyond the Hype: Building AI Systems in Healthcare Where Hallucinations Are Not an Option

Beyond the Hype: Building AI Systems in Healthcare Where Hallucinations Are Not an Option

Health IT Sector Navigates Policy Turbulence with Resilient M&A

Health IT’s New Chapter: IPOs Return, Resilient M&A, Valuations Rise in 1H 2025

PwC Report: US Medical Cost Trend to Remain Elevated at 8.5% in 2026

PwC Report: US Medical Cost Trend to Remain Elevated at 8.5% in 2026

Philips Launches ECG AI Marketplace, Partnering with Anumana to Enhance Cardiac Care with AI-Powered Diagnostics

Philips Launches ECG AI Marketplace, Partnering with Anumana to Enhance Cardiac Care with AI-Powered Diagnostics

WeightWatchers Emerges from Bankruptcy, Launches New Menopause Program

WeightWatchers Emerges from Bankruptcy, Launches New Menopause Program

Secondary Sidebar

Footer

Company

  • About Us
  • Advertise with Us
  • Reprints and Permissions
  • Submit An Op-Ed
  • Contact
  • Subscribe

Editorial Coverage

  • Opinion
  • Health IT
    • Care Coordination
    • EMR/EHR
    • Interoperability
    • Population Health Management
    • Revenue Cycle Management
  • Digital Health
    • Artificial Intelligence
    • Blockchain Tech
    • Precision Medicine
    • Telehealth
    • Wearables
  • Startups
  • Value-Based Care
    • Accountable Care
    • Medicare Advantage

Connect

Subscribe to HIT Consultant Media

Latest insightful articles delivered straight to your inbox weekly

Copyright © 2025. HIT Consultant Media. All Rights Reserved. Privacy Policy |