Healthcare IT pros now confident in their cyber attack response ability

Almost two years since the ransomware attack that brought the NHS (National Health Service) to a halt, healthcare IT professionals feel more confident in their ability to respond to a cyber-attack, according to new research from Infoblox.

healthcare cyberattack response ability

As healthcare providers continue to undertake digital transformation initiatives in an effort to improve efficiencies and the quality of care they deliver, the risk of falling victim to cyber attack increases.

Infoblox commissioned a survey of healthcare IT professionals in the UK, US, Germany and the Benelux Union to gauge the preparedness of the industry to tackle cyberthreats two years on from the WannaCry attack in May 2017.

The research reveals that 92 percent of healthcare IT professionals are now confident in their organization’s ability to respond to a cyber-attack, compared to only 82 percent two years ago.

More than half (56%) have automated systems in place that actively scan their networks for suspicious activity, and around a third (31%) have their own Security Operation Centres (SOCs) for the same purpose.


In the event of ransomware, 32 percent of organizations now have a plan in place to pay a ransom in the event of a cyber attack, as opposed to only one in five questioned shortly after the 2017 WannaCry ransomware attack. A quarter (24%) remain defiant, however, stating that they would be unwilling to pay a ransom.

Greater investment

More healthcare organizations (28%) are spending between 11 and 20 percent more on cyber-security than in 2017 (20%), with the top three investments being anti-virus software (59%), firewalls) (52%), and application security (51%).

Network monitoring, the third most popular cybersecurity solution in 2017, has now fallen to fourth place, while employee education has grown in popularity, with investment 10 percent higher in 2019 than in 2017. The reason for this will have much to do with improving email hygiene in a bid to avoid phishing scams and the delivery of ransomware.

Connected devices

Despite the growing adoption of the Internet of Things (IoT), the research showed no significant increase in the number of devices connected to IT networks. Nonetheless, the number of security policies in place for new connected devices has increased from 85 to 89 percent, with fewer respondents doubting the effectiveness of these policies (9% in 2019/13% in 2017).

The majority of connected devices now run on Microsoft Windows 10 (66%/54%), with the popularity of Linux and Mac OS X growing significantly since 2017 (33%/12% and 31%/7% respectively). Reassuringly, the number of devices running on Windows XP, which has been unsupported since 2014, has fallen from one in five to one in ten.

As a result, the majority of respondents (87%) are confident they are able to patch or update their systems, with the majority doing so either once a week (23%) or once every two to three weeks (24%).

Rob Bolton, Director of Western Europe at Infoblox said: “The widespread disruption caused by the WannaCry attack on the NHS two years ago was a wake-up call to healthcare providers everywhere. We can expect the risk of such attacks to continue to grow as technology is more widely adopted. It’s encouraging, therefore, to see more spending on cyber-security provision, and a more sensible approach to managing the connected devices that have become increasingly crucial to the efficient delivery of care.

“By taking such precautions, healthcare IT providers are right to be more confident about their ability to tackle threats to their network. They mustn’t become complacent, though, and must continue to think strategically about ensuring the security of their networks and – most importantly – the safety of their patients.”

Don't miss