Why Cybercriminals Target Healthcare Data and How Organisations Can Protect Themselves

HealthManagement, Volume 24 – Issue 3, 2024

Healthcare data garners significant value on the dark web. Health-ISAC Chief Security Officer Errol Weiss provides an overview of why cybercriminals specifically target healthcare organisations and what they can do to better protect themselves.

Key Points

• – Humans are unchangeable, and the personal and medical data contained in EHRs remain perpetually valuable.
• – EHRs are targeted primarily because of the prolonged usability of the data, which gives cybercriminals ample opportunity to sell and exploit the information.
• – Beyond the immediate threat of ransomware, the comprehensive nature of EHRs makes them particularly appealing to cybercriminals.
• – The massive appeal of healthcare data warrants additional cybersecurity measures to prevent sensitive information from falling into the wrong hands.
• – Healthcare organisations must protect EHRs from cybercriminals by bolstering cybersecurity defences and making it much harder for a cyberattack to inhibit operations.

Read the full article in HealthManagment here:

https://healthmanagement.org/c/healthmanagement/issuearticle/why-cybercriminals-target-healthcare-data-and-how-organisations-can-protect-themselves

• Related Resources & News
• Healthcare Heartbeat 2024 Q4
• Health-ISAC Hacking Healthcare 2-19-2025
• Podcast: Reflecting on the Change Healthcare cyberattack
• Senate Confirms Trump Pick RFK Jr. to Lead HHS
• The Alarming Backdoor Hiding in 2 Chinese Patient Monitors
• Health-ISAC 2025 Health Sector Cyber Threat Landscape
• How Health Systems Manage Security in the Cloud
• Change Healthcare Attack a Wake-up Call for the Industry
• Five High-Impact Cyberattacks Healthcare Industry Should Avoid in 2025
• Health-ISAC Hacking Healthcare 2-11-2025