TMCnet News

Kaspersky Report: Employee Awareness of Cyberthreats in the Healthcare Industry
[December 18, 2018]

Kaspersky Report: Employee Awareness of Cyberthreats in the Healthcare Industry


According to a new survey report from Kaspersky Lab, employees of healthcare organizations in the U.S. and Canada, who admit their awareness of a ransomware cybersecurity attack, also claim that it wasn't a one-time occurrence - with a third (33%) claiming it happened more than once.

The findings from Kaspersky Lab's latest report, "Cyber Pulse (News - Alert): The State of Cybersecurity in Healthcare," uncover a continuous pattern of ransomware cybersecurity attacks plaguing organizations in the healthcare industry, while also providing insight on employee perceptions and behaviors related to cybersecurity in the workplace.

Data breaches heavily targeting healthcare organizations, such as WannaCry, have brought attention to the vulnerabilities that exist in the industry, making healthcare organizations an even bigger target for cybercriminals. In fact, there have been over 100 hacking/IT-related healthcare organization incidents affecting 500 or more individuals in the U.S. alone this year, according to the U.S. Department of Health and Human Services. In turn, his creates an ongoing risk for healthcare IT staff to prevent and protect against.



Managing this risk has proven to be a challenge for healthcare organizations. In fact, more than one-in-four (27%) healthcare IT employees in North America admit that their employer has experienced a ransomware cybersecurity attack within the past year.

In addition, of those healthcare employees aware of a cyberattack occurring, 85 percent of Canadians and 78 percent of Americans claim to have experienced up to five ransomware cybersecurity attacks in the past five years or more. The research shows that the industry is not learning from its mistakes, and continues to suffer. Even though the healthcare industry has its cybersecurity challenges and has lost many battles to cybercriminals, healthcare employees do care about the protection of the organization.


The top reason healthcare employees to care about having cybersecurity measures in place at their organization is to protect patients (71%). In addition, three out-of-five people (60%) claim they care because they want to protect people and organizations they work with, and nearly a third of respondents (31%) say they care because they do not want to lose their job as a result of not having appropriate cybersecurity measures.

Although there is room for improvement, healthcare employees seem to have confidence in their employer's cybersecurity strategy. In fact, just over a fifth of respondents (21%) said that they don't think their organization would suffer a data breach in the forthcoming year and 23 percent claim they are confident in the organization's strategy.

"Through our study, we found that healthcare employees in North America were confident that their organization would not suffer a data breach in the forthcoming year, but whether they realize it or not, their industry is suffering hundreds of breaches a year," said Rob Cataldo, vice president of enterprise sales at Kaspersky Lab (News - Alert). "Healthcare companies have become a major target for cybercriminals due to the successes they've had, and repeatedly have, in attacking these businesses. As organizations look to improve their cybersecurity strategies to justify employee confidence, they must examine their approach. Business leaders and IT personnel need to work together to create a balance of training, education, and security solutions strong enough to manage the risk."

The research is the result of a survey conducted by research firm Opinion Matters of 1,758 employees based in healthcare organizations - in a variety of roles, ranging from doctors and surgeons, to admin and IT staff - in the United States and Canada.

To find out more information and read the full report, "Cyber Pulse: The State of Cybersecurity in Healthcare," visit the website here.

About Kaspersky Lab
Kaspersky Lab is a global cybersecurity company, which has been operating in the market for over 20 years. Kaspersky Lab's deep threat intelligence and security expertise is constantly transforming into next generation security solutions and services to protect businesses, critical infrastructure, governments and consumers around the globe. The company's comprehensive security portfolio includes leading endpoint protection and a number of specialized security solutions and services to fight sophisticated and evolving digital threats. Over 400 million users are protected by Kaspersky Lab technologies and we help 270,000 corporate clients protect what matters most to them. Learn more at www.kaspersky.com.


[ Back To TMCnet.com's Homepage ]