Connected devices pose security risks for most health systems

8 out of 10 healthcare organization security leaders admit that they have experienced an internet of things (IoT) cyberattack in the past year, of these organizations, 30% said the security incident compromised end-user safety.

The Netherlands-based firm polled 232 healthcare security decision-makers.

Health systems say they lack necessary measures to counter cyberattacks despite being aware of the areas that are vulnerable and need to be protected. Of those surveyed, 50% said their IT network was most prone to the attack, followed by 45% saying mobile devices were at risk, and 42% IoT devices.

Healthcare continues to be aware of the security issues but continues to face vulnerabilities in its infrastructure.

Network security is no longer enough to prevent significant damage and organizations need to factor security at both the app and device-level into their strategy

Device manufacturers are aware of the problem; 82% of those interviewed saying they are concerned the devices are not protected from a possible attack.

The average financial impact of an IoT-focused cyberattack in healthcare was $346,000, the survey found.

About 70% of medical devices will run unsupported Windows operating systems by January 2020, according to a cybersecurity report from Forescout. Microsoft support for devices running Windows 7, Windows 2008 or Windows Mobile is planned to expire by Jan. 14, 2020.

Securing connected devices unsupported legacy devices and new IoT devices is a priority for healthcare IT security professionals since medical devices outnumber healthcare staff three to one. So, as the healthcare industry embraces digital transformation, ransomware and insider threats, third-party breaches are getting more sophisticated and more challenging to prevent