Health-ISAC 2025 Health Sector Cyber Threat Landscape

Annual Threat Report – 2025

2024 was a challenging year in cybersecurity for health sector systems around the world.

The Health-ISAC 2025 Health Sector Cyber Threat Landscape highlights a continued escalation of cyberattacks. Key findings include a surge in ransomware attacks, with increasingly sophisticated techniques employed by threat actors.

The report also emphasizes the growing threat of nation-state actors and cyber-espionage, targeting sensitive patient data and intellectual property. Furthermore, the rise of Internet of Medical Things (IoMT) devices has introduced new vulnerabilities, while the evolving threat landscape necessitates continuous adaptation of security measures for health sector organizations globally.

Includes the following, plus key insights pulled from the survey data:

• Top Five Cyber Threats Health Sector Organizations Faced in 2024
• Top Five Cyber Threats Health Sector Organizations are looking at in 2025
• Top Three Challenges Medical Device Manufacturers reported in developing secure medical devices
• Top Three Impacts on Healthcare Delivery Organizations

Health ISAC 2025 Annual Threat Report
Size : 7.1 MB Format : PDF

• Related Resources & News
• Healthcare Heartbeat 2024 Q4
• Health-ISAC Hacking Healthcare 2-19-2025
• Podcast: Reflecting on the Change Healthcare cyberattack
• Senate Confirms Trump Pick RFK Jr. to Lead HHS
• The Alarming Backdoor Hiding in 2 Chinese Patient Monitors
• How Health Systems Manage Security in the Cloud
• Change Healthcare Attack a Wake-up Call for the Industry
• Five High-Impact Cyberattacks Healthcare Industry Should Avoid in 2025
• Health-ISAC Hacking Healthcare 2-11-2025
• 4 healthcare tech trends to watch in 2025