Healthcare Cybersecurity Report Highlights Human Error as Major Risk Factor

Severity: High (Score: 67.5)

Sources: Reinsurancene.Ws, Prnewswire

Summary

Resilience's recent report reveals that the healthcare sector is facing significant financial losses due to cyber threats, with social engineering accounting for 88% of material losses in the first half of 2025. The average cost per claim in healthcare exceeded $2 million, with extortion demands reaching as high as $4 million. Many healthcare organizations are misallocating their cybersecurity budgets, investing heavily without aligning their spending to the most impactful risks. Effective measures such as dual authorization for wire transfers and continuous anti-fraud training are highlighted as cost-effective strategies that enhance resilience. The report emphasizes that the financial stakes in healthcare cybersecurity have never been higher, with over 275 million healthcare records breached in 2024 alone. The findings aim to guide security leaders in making informed investment decisions based on real claims outcomes. Key Points: • Social engineering is responsible for 88% of significant financial losses in healthcare. • The average cost per cyber claim in healthcare exceeded $2 million in 2025. • Effective security measures do not always require large budgets, focusing on high-impact risks.

Key Entities

• Data Breach (attack_type)
• Ransomware (attack_type)
• Canada (country)
• United Kingdom (country)
• United States (country)
• Healthcare (industry)
• BlackCat (ransomware_group)
• Cl0p (ransomware_group)
• Interlock (ransomware_group)
• Lockbit (ransomware_group)
• Medusa (ransomware_group)