The Truth About the Healthcare Industry’s Cybersecurity Needs

Crime is an ever-present danger that millions face around the globe. But most of us are not highly vulnerable to being mugged or having our car hijacked at any given moment. However, there is an ever-increasing type of crime that can impact us with greater consequences: cybercrime. Without having to attack us physically, these virtual villains are targeting our sensitive information from databases for their financial gain or for the mere pleasure of causing chaos. What could be more beneficial to their scheme than the amount of personal information found within the Healthcare Industry?

Healthcare organizations accumulate a massive quantity of confidential and sensitive personal information about their customers and this makes them ideal prey for cyber attackers. With the COVID-19 global pandemic, it is estimated that cybercrime is up 600%. Although there does not exist an industry that is not threatened by this criminal activity, healthcare is among the most vulnerable. With the digital revolution changing doctors workloads from extensive and complicated paperwork to direct entry into electronic files, healthcare data needs to have a secure network and database that will not slow down the process of providing efficient medical care. Reports show that the industry with the highest number of attacks by ransomware alone is the healthcare industry. Here are some additional sobering statistics to consider: 

  • Total malware infections have been on the rise for the last ten years:
    • 2009 – 12.4 million
    • 2010 – 29.97 million
    • 2011 – 48.17 million
    • 2012 – 82.62 million
    • 2013 – 165.81 million
    • 2014 – 308.96 million
    • 2015 – 452.93 million
    • 2016 – 580.40 million
    • 2017 – 702.06 million
    • 2018 – 812.67 million
  • Over 18 million websites are infected with malware at a given time each week.
  • 7 out of every 10 malware payloads were ransomware.
  • Businesses lost around $8,500 per hour due to ransomware-induced downtime.
  • Beazley, a global insurance company, found that the healthcare sector experienced the highest number of cyberattacks and data breaches amongst all industries in 2019, with more than double the number of attacks and breaches compared to the second highest-cyber attacked industry.


Healthcare organizations face an arduous battle in protecting themselves against an increasingly sophisticated array of cyber threats on their information systems and those of their supply-chain partners and business associates. This requires robust cybersecurity that prevents the leaking of patient data. When information is leaked, legal costs can skyrocket and even bankrupt a practice or provider.

FPV & Galindez is prepared and ready to assist your healthcare organization to take the necessary steps to examine your security threats, select the best solutions to assure your data is secure, and save your business from the costly consequences that can result from cybercrime. There is no need for you to be a virtual victim. With the right defense strategies, you can continue to thrive as you work daily to save real lives. Consult your team of experts at


About the author: Wilfredo Vera Pujols, CISA, CDPSE

A skilled consultant in the areas of Internal Audits and Compliance, Vera holds a BBA in Information Services from the University of Puerto Rico Mayaguez and a Master’s in Computer Sciences from the illustrious Polytechnic University of Puerto Rico. He has used his excellent preparation in the last 3 years of his specialty in Auditing and Consulting, Internal Controls, and SOX for our diverse clientele. Among some of his major clients are Evertec, Triple S of Puerto Rico, and Banco Popular, to name a few. We are sure that this ISACA member, along with the expertise of FPV & Galíndez’s skilled Consulting Department will provide strategic solutions for any IT and Cybersecurity needs your organization may have.