Frequent ransomware attacks in healthcare and public health sectors elevate security threats to OT/IoT environments

Industrial Cyber reached out to experts in the healthcare sector to assess the manner in which ransomware attacks affect the OT/IoT environments across the healthcare and public health sectors.

“For the most part, when it comes to ransomware in the OT/IoT space, the health sector has mainly been affected by attacks against third party suppliers,” Denise Anderson, president and CEO of the Health Information Sharing and Analysis Center (H-ISAC), told Industrial Cyber. “For example, during the COVID-19 pandemic, organizations that pharmaceutical manufacturers relied on for packaging vaccines and therapeutics experienced ransomware attacks, which halted operations and impacted packaging supply and ultimately the distribution of vaccines and therapeutics,” she added.

Organizations in the healthcare and public health sectors are facing an increasing number of ransomware attacks, often leaving hospital networks vulnerable. With these adversaries lurking around in the OT/IoT environments, they have become considerably more capable of executing significant attacks at scale while also taking advantage of the growing success of the ransomware-as-a-service (RaaS) model.

The healthcare and public health sectors remain a top attack vector for cybercriminals and ransomware threat groups. However, hackers are shifting their focus to smaller entities that truly have a deficit in cyber defenses, showing a huge change in victims and approach. Additionally, changes in government regulations, a massive revolution in connectivity of medical devices and mobile technology, and transformation in how care is delivered and consumed have come together to form a perfect storm of complexity and vulnerability, which cyber adversaries target.

Link to full article in Industrial Cyber:

https://industrialcyber.co/features/frequent-ransomware-attacks-in-healthcare-and-public-health-sectors-elevate-security-threats-to-ot-iot-environments/

• Related Resources & News
• Healthcare Heartbeat 2024 Q4
• Health-ISAC Hacking Healthcare 2-19-2025
• Podcast: Reflecting on the Change Healthcare cyberattack
• Senate Confirms Trump Pick RFK Jr. to Lead HHS
• The Alarming Backdoor Hiding in 2 Chinese Patient Monitors
• Health-ISAC 2025 Health Sector Cyber Threat Landscape
• How Health Systems Manage Security in the Cloud
• Change Healthcare Attack a Wake-up Call for the Industry
• Five High-Impact Cyberattacks Healthcare Industry Should Avoid in 2025
• Health-ISAC Hacking Healthcare 2-11-2025