TMCnet News
SonicWall Research Sounds Code Red on Healthcare Cybersecurity as Attack Rates Refuse to DeclineNew Healthcare Protect Brief reveals 13.3 million remote desktop exploitation attempts and more active ransomware families than any other tracked vertical MILPITAS, Calif., June 23, 2026 /PRNewswire/ -- SonicWall today released its 2026 Healthcare Protect Brief, a vertical-specific companion to the SonicWall 2026 Cyber Protect Report, revealing that healthcare cybersecurity remains the most persistently targeted industry in SonicWall's global telemetry, and that the gap between healthcare and every other sector is widening, not closing. While attack volumes across most verticals declined between 17% and 56% year-over-year, healthcare recorded the smallest decline of any tracked industry. The finding is not simply that healthcare is heavily targeted - it's because attackers are less willing to leave healthcare than anywhere else. "Healthcare is the most targeted industry for several reasons, and none of them are accidental," said Michael Crean, SonicWall SVP of Managed Services. "What our research makes clear is that attackers have done the math. Hospitals cannot go dark, downtime is measured in patient outcomes and the pressure to pay is unlike anything in any other sector. None of that changes until healthcare stops relying on security architectures built for a world that no longer exists, and starts treating Zero Trust not as a future initiative, but as the baseline they needed yesterday." SonicWall's Healthcare Protect Brief draws on data from SonicWall's global network of more than one million security sensors to document the specific attack patterns, exploitation vectors and ransomware campaigns defining the healthcare threat landscape in 2026. Key Findings from the 2026 SonicWall Healthcare rotect Brief
Three Problems. One Industry. No Easy Exits. The Internet of Things (IoT) footprint makes it worse. Exploitation spanned 243 unique attack signatures targeting connected medical devices that cannot be patched, cannot run endpoint agents and share network segments with clinical systems. A Hikvision vulnerability from 2021 is still generating millions of detection events in 2026. Legacy vulnerabilities do not expire. Against that backdrop, ten ransomware families operated simultaneously against healthcare in the first half of 2026. That is not opportunism. It is a calculated market decision driven by one simple reality: healthcare cannot absorb downtime, and the pressure to pay is unlike anything in any other sector. "Healthcare does not have a cybersecurity problem," continued Crean. "It has three of them, and attackers have figured out how to use all of them at the same time." The Architecture Problem Has a Known Solution SonicWall partner Fornida proved that deployment at scale is achievable. Working with ExaltHealth across five operating rehabilitation hospitals and eight more in planning, Fornida embedded Zero Trust into a standardized opening playbook. It ships pre-configured with every facility's equipment package. Legacy VPN is retired facility by facility. No network rebuild required. "What the ExaltHealth engagement taught us is that security cannot be an afterthought in a hospital opening," said Farzad Vahid, Founder and CEO, Fornida, a trusted SonicWall partner. "By the third facility, Zero Trust was built into our standard playbook. Five hospitals operating. Eight more planned. That only works if security is a system, not a fire drill." Availability About SonicWall
SOURCE SonicWall
|
