Chicago – March 26, 2025 – Trustwave, a leading cybersecurity and managed security services provider, today released a series of reports detailing the threats facing the healthcare sector. The combination of highly-sensitive patient data, legacy systems, increasing reliance on telehealth services, and more connected devices, means healthcare is a prime target for threat actors.
The report from the Trustwave SpiderLabs team takes a deep dive into the healthcare industry landscape as it undergoes a rapid digital transformation, bringing unprecedented advancements in patient care. With this report, the team has produced a comprehensive breakdown of attack stages, providing healthcare organizations with actionable intelligence to strengthen their defensive posture. Building upon a previous Healthcare Threat Intelligence Briefing, which dissected the attack flows specific to this vital sector, the 2025 report delves deeper into the emergent threats confronting healthcare organizations worldwide.
Additionally, Trustwave SpiderLabs has produced two detailed analyses focusing on pressing areas of concern: the rapid rise of ransomware and an examination of common security gaps discovered through a healthcare red team.
“Healthcare artificial intelligence and technology adoption presents a spectrum of risks that few other industries need to navigate”, said Kory Daniels, CISO at Trustwave. “The risk is not just incredibly sensitive data privacy, but human life and quality of patient care. It’s not hard to see how compromised medical equipment like a ventilator or pump could lead to a wrong dose or missed patient alert that results in death. Complex supply chains, lapses in patches and credential management all have consequences too serious for anyone in the healthcare industry to ignore".
The report highlights detailed descriptions of the adversarial groups that favor healthcare targets, the gaps SpiderLabs researchers have found in healthcare cybersecurity, and how lapses in patching and strong credential management allow attackers access.
The report also breaks down and explains the maze of compliance regulations these organizations must navigate daily and the risk posed by the long and involved supply chains required for these facilities to operate at peak efficiency. Addressing third-party threats within these supply chains is critical for maintaining cybersecurity resilience in healthcare.
Trustwave SpiderLabs’ 2025 research series on the healthcare vertical includes:
- 2025 Trustwave Risk Radar Report: Healthcare Sector
- Healthcare Sector Deep Dive: Unmasking Security Gaps
- Healthcare Sector Deep Dive: Ransomware Trends and Impact
Key findings from Trustwave SpiderLabs’ healthcare research series include:
- 45% of attacks exploited public-facing applications
- 56% of public-facing applications exploited were against Log4j
- 21% of all ransomware attacks focused on public health and government healthcare targets.
- 51% of ransomware attacks against the healthcare industry target US-based healthcare companies
- 9% of all attacks came from the threat group Ransomhub
- Third-party threats within supply chains continue to pose significant risks to compliance efforts.
To access this year’s research, please click here for the full healthcare series.
About Trustwave
Trustwave is a globally recognized cybersecurity leader that reduces cyber risk and fortifies organizations against disruptive and damaging cyber threats.
Trustwave’s comprehensive offensive and defensive cybersecurity portfolio detects what others cannot, responds with greater speed and effectiveness, optimizes its client’s cyber investment, and improves security resilience. Trusted by thousands of organizations worldwide, Trustwave leverages its world-class team of security consultants, threat hunters, and researchers, and its market-leading security operations platform to decrease the likelihood of attacks and minimize potential impact.
Trustwave is an analyst-recognized leader in managed detection and response (MDR), managed security services (MSS), cyber advisory, penetration testing, database security, and email security. The elite Trustwave SpiderLabs team provides industry-defining threat research, intelligence, and threat hunting, all of which are infused into Trustwave services and products to fortify cyber resilience in the age of inevitable cyber-attacks.
For more information about Trustwave, please visit: https://www.trustwave.com/en-us/.
