Skip to main content
close search
site logo
Dive Brief

Healthcare cyberattacks led to worse patient care, increased mortality, study finds

Published Sept. 8, 2022
Hailey Mensik's headshot
Hailey Mensik
Shot of a hacker using a laptop katleho Seisa via Getty Images
This audio is auto-generated. Please let us know if you have feedback.

Dive Brief:

  • More than 20% of the healthcare organizations recently surveyed by the Ponemon Institute reported increased patient mortality rates after experiencing a cyberattack, according to a study out Thursday from the research group and Proofpoint, a cybersecurity compliance company.
  • Delayed procedures and tests were the most commonly reported consequences of cyberattacks, along with longer patient stays, according to the study.
  • Ransomware had the most negative impact on patient care, with 64% of organizations saying that an attack resulted in procedure or test delays. Of those polled, 59% reported longer patient stays as a result of ransomware attacks, the study found.

Dive Insight:

Cyber criminals have recently targeted healthcare providers for their troves of detailed patient data, with attacks hampering hospital operations — like the April cyberattack at Tenet facilities that disrupted acute patient care.

Universal Health Services experienced a similar cybersecurity incident in 2020, which cost the chain $67 million after it had to divert ambulance traffic and schedule patient procedures at competing facilities due to the incident.

The Ponemon Institute study, which surveyed 641 healthcare IT and security practitioners, found that 89% of the organizations surveyed experienced a cyberattack in the past year and among them had an average of 43 attacks.

Cyber incidents can obstruct operations and patient care, and the four most common cyberattacks — cloud compromises, ransomware, supply chain and business email compromises — resulted in increased patient mortality rates for 23% of the organizations experiencing them.

Cyberattacks resulted in poor patient outcomes for 57% of those surveyed and increased complications from medical procedures for nearly half of them, according to the study.

Beyond impacting patient care, cyberattacks can also prove costly for healthcare organizations.

The average total cost for the most expensive cyberattack experienced in the study was $4.4 million, including $1.1 million in lost productivity.

Organizations can take steps to protect themselves from attacks with training and awareness programs and employee monitoring, as “organizations recognize careless and negligent employees pose a significant risk,” the study said.

Filed Under: Health IT

Editors' picks

Company Announcements

View all | Post a press release
Corazon Offers Comprehensive Services to Ambulatory Surgery Centers
From Corazon
August 06, 2024
Wiley to Expand Reach and Impact of Medical Education Programs to More Than 2.8 million Health…
From Wiley
July 31, 2024
Catalyst Solutions to lead the Medicaid Modernization Panel at MESC24 on State of Florida's Mo…
From Catalyst Solutions
August 02, 2024
Jo Abernathy Joins Catalyst Solutions as Advisory Board Member
From Catalyst Solutions
July 31, 2024
Editors' picks
Latest in Health IT
image/svg+xml
Industry Dive is an Informa business
© 2024 Industry Dive. All rights reserved. | View our other publications | Privacy policy | Terms of use | Take down policy.
Cookie Preferences / Do Not Sell