Inter-American Development Bank
facebook
twitter
youtube
linkedin
instagram
Abierto al públicoBeyond BordersCaribbean Development TrendsCiudades SosteniblesEnergía para el FuturoEnfoque EducaciónFactor TrabajoGente SaludableGestión fiscalGobernarteIdeas MatterIdeas que CuentanIdeaçãoImpactoIndustrias CreativasLa Maleta AbiertaMoviliblogMás Allá de las FronterasNegocios SosteniblesPrimeros PasosPuntos sobre la iSeguridad CiudadanaSostenibilidadVolvamos a la fuente¿Y si hablamos de igualdad?Home
Citizen Security and Justice Creative Industries Development Effectiveness Early Childhood Development Education Energy Envirnment. Climate Change and Safeguards Fiscal policy and management Gender and Diversity Health Labor and pensions Open Knowledge Public management Science, Technology and Innovation  Trade and Regional Integration Urban Development and Housing Water and Sanitation
  • Skip to main content
  • Skip to secondary menu
  • Skip to primary sidebar
  • Skip to footer

Gente Saludable

IDB

  • HOME
  • CATEGORIES
    • Aging and Dependency
    • Courses and Seminars
    • Digital Transformation
    • Public health and nutrition
    • Healthy Lifestyle
    • Health services
    • Health Spending and Financing
    • Women’s and Children’s Health
  • authors
  • English
    • Spanish
    • Portuguese

Why is the Healthcare Sector so Attractive to Cybercriminals?

February 24, 2025 por José Callero Leave a Comment


Cyberattacks are growing exponentially, and lack of cybersecurity is now considered one of the main global risks for economic and social stability. By 2025, the global cost of cybercrime is expected to reach US$10.5 trillion annually, a drastic leap considering that in 2015 it was US$3 trillion.

Cyberattacks in healthcare increased by 74% in 2023, making it one of the most affected sectors. This is due to the sensitivity of the data and the growing adoption of technologies, such as electronic medical records and medical devices connected to the internet, like patient monitors, insulin pumps, and diagnostic equipment, which collect and transmit data in real time. Strengthening cybersecurity is paramount to protect patients and health systems. 

The IDB publication Protecting Digital Health: A Guide to Cybersecurity in the Health Sector describes different frameworks, guides, and controls to address the problem. It also proposes a practical methodology for identifying risks, implementing controls, and fostering a culture of cybersecurity in healthcare organizations.

The Appeal of the Healthcare Sector for Cybercriminals

A combination of factors makes the healthcare sector not only vulnerable but also highly profitable. Firstly, the essential importance of healthcare services means that any interruption can have serious, even fatal, consequences. An emblematic case is the University Hospital of Düsseldorf in 2020, where an attack affected critical systems, preventing access to essential data and resulting in the first recorded death directly associated with a cyberattack.

Secondly, the sector is a lucrative target because of the high value of the data managed, including medical records, personal, and financial information.

Health systems have many potential entry points for cybercriminals.  For example, 75% of 200,000 infusion pumps connected to hospital networks and other organizations analyzed in a study had critical vulnerabilities. While connectivity in devices improves efficiency and patient care, vulnerabilities such as outdated firmware or lack of encryption in data transfer also provide opportunities for attacks. 

How to Address Cybersecurity in Healthcare?

To address these challenges, it is crucial to adopt a comprehensive approach that combines processes, people, and technologies. In organizations, cybersecurity must be part of their strategic management, prioritizing the protection of critical systems —such as emergency systems and medical devices—and implementing technical measures such as network segmentation, regular software updates, and continuous monitoring.

Furthermore, strengthening the security of medical data is also relevant given its high value to cybercriminals. This includes the use of end-to-end encryption, multi-factor authentication, and regular audits to detect vulnerabilities.

Finally, the heterogeneity of medical systems and devices connected to the internet requires a specific security strategy. Organizations must guarantee that connected medical devices comply with updated security standards and are protected against unauthorized access.

At the global level, institutions and regulations approach cybersecurity from different angles. One example is the working group on Cybersecurity of the US Health Care Industry Coordinating Council, whose mission is to identify cybersecurity threats to critical healthcare infrastructures and promote preparedness. Understanding these initiatives is essential to considering new solutions and moving towards a more secure and resilient digital ecosystem. We will discuss this, and other global solutions in more detail in our next blog.

 


Filed Under: Cybersecurity, Digital Health, Digital Transformation Tagged With: Banco Interamericano de Desarrollo, BID, cybersecurity, digital health, health, Salud

José Callero

José Callero is a systems engineer and IDB cybersecurity consultant. With more than 25 years of experience in different areas of Information Technology, he currently serves as operations manager of Urudata Ciberseguridad, directing the largest private Security Operations Center (SOC) in Uruguay. As a speaker, he has participated in international events organized by governments and organizations such as ITU, ISACA and FIRST, among others. He also served as director of CERTuy, being responsible for the design and development of the National SOC. He has a master's degree in Cybersecurity from the University of La Rioja, Spain, and multiple certifications related to cybersecurity and project management, in addition to being an independent IT and computer security consultant.

Reader Interactions

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Primary Sidebar

Follow Us

Subscribe

Search

Health

Latin American and Caribbean countries face multiple challenges to provide quality healthcare for their citizens. In this blog, IDB Specialists and international experts discuss current health issues and hope to build a dynamic dialogue through your comments.

Similar Posts

  • How to Establish a Successful Health Information Exchange System? A Korean Case
  • When to Use Biometrics to Improve Health
  • How Can Global Cooperation Improve Health Services in your Country
  • Supporting Strong Foundations: The Digital Health Strategy Dashboard
  • How Israel Delivers Healthcare Value

Footer

Banco Interamericano de Desarrollo
facebook
twitter
youtube
youtube
youtube

    Blog posts written by Bank employees:

    Copyright © Inter-American Development Bank ("IDB"). This work is licensed under a Creative Commons IGO 3.0 Attribution-NonCommercial-NoDerivatives. (CC-IGO 3.0 BY-NC-ND) license and may be reproduced with attribution to the IDB and for any non-commercial purpose. No derivative work is allowed. Any dispute related to the use of the works of the IDB that cannot be settled amicably shall be submitted to arbitration pursuant to the UNCITRAL rules. The use of the IDB's name for any purpose other than for attribution, and the use of IDB's logo shall be subject to a separate written license agreement between the IDB and the user and is not authorized as part of this CC- IGO license. Note that link provided above includes additional terms and conditions of the license.


    For blogs written by external parties:

    For questions concerning copyright for authors that are not IADB employees please complete the contact form for this blog.

    The opinions expressed in this blog are those of the authors and do not necessarily reflect the views of the IDB, its Board of Directors, or the countries they represent.

    Attribution: in addition to giving attribution to the respective author and copyright owner, as appropriate, we would appreciate if you could include a link that remits back the IDB Blogs website.



    Privacy Policy

    Derechos de autor © 2025 · Magazine Pro en Genesis Framework · WordPress · Log in

    Banco Interamericano de Desarrollo

    Aviso Legal

    Las opiniones expresadas en estos blogs son las de los autores y no necesariamente reflejan las opiniones del Banco Interamericano de Desarrollo, sus directivas, la Asamblea de Gobernadores o sus países miembros.

    facebook
    twitter
    youtube
    This site uses cookies to optimize functionality and give you the best possible experience. If you continue to navigate this website beyond this page, cookies will be placed on your browser.
    To learn more about cookies, click here
    X
    Manage consent

    Privacy Overview

    This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.
    Necessary
    Always Enabled
    Necessary cookies are absolutely essential for the website to function properly. This category only includes cookies that ensures basic functionalities and security features of the website. These cookies do not store any personal information.
    Non-necessary
    Any cookies that may not be particularly necessary for the website to function and is used specifically to collect user personal data via analytics, ads, other embedded contents are termed as non-necessary cookies. It is mandatory to procure user consent prior to running these cookies on your website.
    SAVE & ACCEPT