# Human Error in Healthcare: The Hidden Cybersecurity Risk
In the age of digital transformation, no industry is immune to the threat of cybersecurity breaches. But among all sectors, healthcare stands at a critical juncture, with its reliance on digital systems to enhance patient care and operational efficiency making it an attractive target for hackers.
## The Rise in Healthcare Breaches
A recent study by Surfshark has revealed that the number of hacking/IT incidents affecting individuals' health information in the US has skyrocketed. In 2024, a staggering 170 million people were affected, compared to 160 million in 2023. This significant increase is attributed to the growing reliance on digital systems in healthcare.
## A Growing Concern
The largest resolved healthcare breach in the US occurred in Arizona in 2024, affecting 2 million individuals' health information due to a cyberattack on the Medical Management Resource Group. The largest potential breach, impacting up to 100 million people, is still under investigation. Minnesota leads the list among the 50 states and the District of Columbia when counting affected individuals per state population in 2024.
## Human Error: A Common Culprit
Miguel Fornés, cybersecurity expert at Surfshark, explains that hacking incidents on hospitals and healthcare systems are a serious threat to international security. "These attacks on hospitals and healthcare systems are a serious threat to international security," he says. "They jeopardize lives, destabilize societies and often occur due to human error." Such attacks can delay emergency care, cancel surgeries, and postpone important medical treatments.
## The Consequences
The consequences of such data breaches are severe and long-lasting. Patient history, social security numbers, or payment details are compromised, which may lead to denial of health insurance, job discrimination based on health conditions, or medical identity theft. "Arguably this type of data breach is the worst one can face," Fornés continues.
## The Most Prevalent Type of Breach
In 2024, hacking/IT incidents emerged as the most prevalent type of breach in the US healthcare sector. Over 80 percent of reported healthcare data breaches affecting 1,000 or more individuals fell into this category, including both resolved cases and those still under investigation.
## Areas of Weakness
Dr. Tim Sandle, Digital Journal's Editor-at-Large for science news, highlights that network servers were the most vulnerable location for healthcare data, featuring in nearly 80 percent of analyzed hacking/IT incidents in 2024. Email was the second most frequently identified location, appearing in more than 20 percent of breaches.
## A Growing Concern Globally
In contrast, in the UK, the Information Commissioner's Office (ICO) reports that in 2024, 25 percent of all health sector breaches affecting 1,000 or more individuals are categorized as cyber incidents. The study by Surfshark has shed light on the vulnerabilities and threats that compromise patient data and disrupt essential services in the healthcare sector.
## Conclusion
As the healthcare sector continues to rely on digital systems, it is crucial for medical organizations to prioritize cybersecurity and take proactive measures to prevent hacking/IT incidents. By understanding the growing threat of cyber breaches and addressing the areas of weakness, we can mitigate the risks and ensure the safety and security of patient data.