• Skip to main content
  • Skip to secondary menu
  • Skip to primary sidebar
  • Skip to secondary sidebar
  • Skip to footer

  • Opinion
  • Health IT
    • Behavioral Health
    • Care Coordination
    • EMR/EHR
    • Interoperability
    • Patient Engagement
    • Population Health Management
    • Revenue Cycle Management
    • Social Determinants of Health
  • Digital Health
    • AI
    • Blockchain
    • Precision Medicine
    • Telehealth
    • Wearables
  • Startups
  • M&A
  • Value-based Care
    • Accountable Care (ACOs)
    • Medicare Advantage
  • Life Sciences
  • Research

41% of Third-Party Breaches in 2024 Targeted Healthcare Orgs

by Fred Pennic 02/11/2025 Leave a Comment

  • LinkedIn
  • Twitter
  • Facebook
  • Email
  • Print
Healthcare Cybersecurity: 183 Million Patient Records Exposed in 2024

What You Should Know: 

– The healthcare industry continues to be the most heavily targeted sector, accounting for 41.2% of third-party breaches in 2024, according to new report from Black Kite. 

– Black Kite’s sixth annual Third Party Breach Report reveals a concerning trend in cybersecurity: the rise of “silent breaches.” These hidden vulnerabilities within interconnected ecosystems wreaked havoc across industries in 2024, with threat actors exploiting trusted vendor relationships to launch devastating attacks.

– The report, compiled by the Black Kite Research and Intelligence Team (BRITE), provides a deep analysis of public breaches and regulatory filings from 2024, along with proprietary data. It highlights the evolving tactics of cybercriminals and underscores the urgent need for organizations to strengthen their third-party risk management practices.

Healthcare Security Vulnerability 

The report reveals that healthcare security vulnerability stems from the high value of patient data, reliance on third-party providers, and inherent security challenges within the healthcare ecosystem. Despite the concerning trends, the report also reveals some positive developments. Healthcare vendors showed the most significant improvement in cybersecurity posture after incidents, with 62.5% achieving better security ratings. This improvement is likely driven by regulatory requirements like HIPAA, which mandate robust security measures.

Other key findings from the report include: 

– Unauthorized Network Access: Over 50% of publicly disclosed third-party breaches in 2024 involved unauthorized network access, highlighting the importance of securing access points and protecting sensitive data.

– Ransomware Remains a Threat: Ransomware continued to be a major disruptor, accounting for 66.7% of known attack methods. Attackers are increasingly leveraging third-party vulnerabilities to amplify the impact of ransomware attacks.

– Software Vulnerabilities: Exploiting software vulnerabilities, including zero-day vulnerabilities, remained a common tactic in 2024. Unpatched or misconfigured systems continue to be an easy target for attackers.

– Credential Misuse on the Rise: Nearly 8% of known attack methods involved credential misuse, highlighting the need for strong password security and multi-factor authentication.

– Shift Towards Software Vendors: One in four third-party breaches originated with software vendors, indicating a growing focus on targeting software supply chains.

“Digital interconnectedness drives progress, but it also heightens risk. Because of our increasing reliance on software platforms and tools, the exploitation of a single vulnerability can have a catastrophic impact,” said Ferhat Dikbiyik, chief research and intelligence officer at Black Kite. “Amidst these challenges, critical lessons emerged, revealing pathways to resilience and improved cybersecurity practices. BRITE research offers a detailed look at these findings to inform cybersecurity leaders as they build their 2025 strategies.”

  • LinkedIn
  • Twitter
  • Facebook
  • Email
  • Print

Tagged With: Cybersecurity

Tap Native

Get in-depth healthcare technology analysis and commentary delivered straight to your email weekly

Reader Interactions

Primary Sidebar

Subscribe to HIT Consultant

Latest insightful articles delivered straight to your inbox weekly.

Submit a Tip or Pitch

Featured Insights

2025 EMR Software Pricing Guide

2025 EMR Software Pricing Guide

Featured Interview

Paradigm Shift in Diabetes Care with Studio Clinics: Q&A with Reach7 Founder Chun Yong

Most-Read

Medtronic to Separate Diabetes Business into New Standalone Company

Medtronic to Separate Diabetes Business into New Standalone Company

White House, IBM Partner to Fight COVID-19 Using Supercomputers

HHS Sets Pricing Targets for Trump’s EO on Most-Favored-Nation Drug Pricing

23andMe to Mine Genetic Data for Drug Discovery

Regeneron to Acquire Key 23andMe Assets for $256M, Pledges Continuity of Consumer Genome Services

CureIS Healthcare Sues Epic: Alleges Anti-Competitive Practices & Trade Secret Theft

The Evolving Role of Physician Advisors: Bridging the Gap Between Clinicians and Administrators

The Evolving Physician Advisor: From UM to Value-Based Care & AI

UnitedHealth Group Names Stephen Hemsley CEO as Andrew Witty Steps Down

UnitedHealth CEO Andrew Witty Steps Down, Stephen Hemsley Returns as CEO

Omada Health Files for IPO

Omada Health Files for IPO

Blue Cross Blue Shield of Massachusetts Launches "CloseKnit" Virtual-First Primary Care Option

Blue Cross Blue Shield of Massachusetts Launches “CloseKnit” Virtual-First Primary Care Option

Osteoboost Launches First FDA-Cleared Prescription Wearable Nationwide to Combat Low Bone Density

Osteoboost Launches First FDA-Cleared Prescription Wearable Nationwide to Combat Low Bone Density

2019 MedTech Breakthrough Award Category Winners Announced

MedTech Breakthrough Announces 2025 MedTech Breakthrough Award Winners

Secondary Sidebar

Footer

Company

  • About Us
  • Advertise with Us
  • Reprints and Permissions
  • Submit An Op-Ed
  • Contact
  • Subscribe

Editorial Coverage

  • Opinion
  • Health IT
    • Care Coordination
    • EMR/EHR
    • Interoperability
    • Population Health Management
    • Revenue Cycle Management
  • Digital Health
    • Artificial Intelligence
    • Blockchain Tech
    • Precision Medicine
    • Telehealth
    • Wearables
  • Startups
  • Value-Based Care
    • Accountable Care
    • Medicare Advantage

Connect

Subscribe to HIT Consultant Media

Latest insightful articles delivered straight to your inbox weekly

Copyright © 2025. HIT Consultant Media. All Rights Reserved. Privacy Policy |