The Cyber Risk Landscape of the U.S. Healthcare Industry

This report presents an in-depth analysis of cybersecurity hygiene and risks in the U.S. healthcare industry

The massive payment disruptions for U.S. healthcare providers resulting from the February 2024 BlackCat ransomware attack was an extreme, yet highly illustrative, example of the third-party risks stemming from high interdependence among healthcare organizations.

This report aims to help healthcare organizations and their partners reduce such risks, by examining:

• The security ratings of healthcare organizations to identify those areas in which they score lowest
• Specific issues with the most negative impact on ratings
• Recent healthcare breaches, including ransomware attacks