The economic costs of ransomware attacks on healthcare organizations have been significant, according to a study by Comparitech. The study reveals that these attacks have cost the US economy a staggering $77.5 billion since 2016. This figure takes into account the downtime that medical entities have experienced as a result of ransomware attacks.
On average, healthcare organizations have suffered nearly 14 days of downtime following an attack. The year 2023 currently holds the record for the highest average downtime at 18.71 days, closely followed by 2022 at 15.71 days. Based on these figures, it is estimated that ransomware attacks have caused a total of 6,347 days, or 17.4 years, of downtime.
The financial impact of this downtime is also significant. Comparitech estimates that medical organizations lost $9.4 million in 2021, $16.2 million in 2022, and $15.5 million in 2023 so far due to downtime caused by ransomware attacks. While these figures are substantial, they do not surpass the estimated $19.3 million lost in 2020.
Jan Lovmand, the CTO at BullWall, expressed deep concern over these findings. He emphasized that the financial cost of $77.5 billion is substantial, but the true human cost is immeasurable. Ransomware attacks on healthcare facilities pose a serious threat to public health and safety. They not only disrupt the delivery of critical medical services, leading to delays in essential surgeries and treatments that endanger patients’ lives, but they also compromise sensitive patient data. The consequences of such attacks can be catastrophic, leaving hospitals struggling to recover their data and regain control over their systems. The financial losses and compromised patient care dealt by these attacks have a crippling impact on already strained institutions.
Healthcare providers are attractive targets for cybercriminals due to the extensive use of technology in managing various functions, from patient records to surgical equipment. This creates a large attack surface with vulnerable targets. Additionally, healthcare organizations tend to allocate meager resources for bolstering cybersecurity defenses. As ransomware attacks show no signs of stopping, it is essential to invest in countermeasures that can halt these attacks without requiring a complete shutdown of IT systems and healthcare services. Ransomware containment defenses and off-site backups are considered essential in this regard, according to Lovmand.
Emily Phelps, the Director at Cyware, agrees that healthcare will continue to be a highly targeted industry for cybercriminals. She points out that healthcare organizations possess valuable data but often have limited security resources. The complexity of securing vast organizations with both new and legacy systems creates gaps in their defenses that adversaries can exploit. With the use of advanced technologies like AI, threat actors can operate more quickly and further complicate the security situation for healthcare entities.
Phelps suggests that healthcare organizations need to adopt a proactive security posture to mitigate these risks. This requires access to relevant and context-rich threat intelligence, which can help prioritize threats effectively. Organizations can benefit from joining healthcare Information Sharing and Analysis Centers (ISACs) to receive such intelligence. However, it is crucial to prioritize and orchestrate this intelligence appropriately to take meaningful action. Security orchestration and collaboration, along with automated threat intelligence platforms, can ensure that the right information reaches the right people at the right time.
In conclusion, the economic costs of ransomware attacks on healthcare organizations have been substantial, totaling $77.5 billion since 2016. Alongside the financial losses, the downtime caused by these attacks disrupts critical medical services and compromises patient care. Healthcare providers must invest in robust cybersecurity defenses to protect against these attacks and prioritize proactive security measures to mitigate the risks. By leveraging threat intelligence and adopting security orchestration and collaboration, healthcare organizations can better defend against ransomware threats and safeguard patient data and public health.