News | Cybersecurity | May 13, 2024

New data reveals healthcare industry is facing rising cyberattacks

Data violation cases and victims due to cyberattacks in the US 2023, by industry.

May 13, 2024 — In the wake of the cybersecurity breach targeting the prominent healthcare system Ascension, a new study has unveiled the industries most susceptible to cyberattacks. Alarmingly, the healthcare sector has been revealed as the most vulnerable, underscoring the urgent need for heightened security within healthcare companies.

The study conducted by data collection experts SOAX utilized data from the Identity Theft Resource Center on the number of data violation cases from 2020 to 2023 by industry. Each industry has been ranked based on its number of data violation cases in 2023, revealing the industries most at risk. Cybersecurity threats continue to evolve, posing a threat to industries across the United States.

Recent data from 2023 underscores the pressing need for industries to invest in cybersecurity measures, particularly in sectors such as healthcare and financial services, which emerged as the most vulnerable to malicious intrusions.  

The healthcare industry is the most vulnerable sector, topping the ranking with 809 data violation cases in 2023. This is a staggering surge in incidents, with cases soaring from 343 in 2022 – a 136% increase. Further data revealed that these cases affected 56 million victims within the healthcare industry, underscoring the profound impact cyberattacks have on the industry.   

The financial services industry ranked second most at risk, with 744 reported data violation cases in 2023. Additionally, the sector witnessed a notable surge in cyber incidents, with reported cases skyrocketing from 269 in 2022 to 744 in 2023—a staggering 177% increase, the highest among all industries. Moreover, out of the 744 reported data cases, a staggering 61 million victims were affected, clearly indicating that this industry needs more protection from cybercriminals.    

The Professional Services industry ranked third in 2023 with 308 reported cases, which impacted 30 million victims. The sector also experienced a notable increase of 38% compared to previous years, with just 223 reported data violation cases in 2022.  

Ranking fourth among the most vulnerable industries is manufacturing, which faced 259 data breach incidents due to cyberattacks in 2023, impacting five million victims.  

In 2023, the education sector experienced the fifth-highest count of data breach incidents, affecting four million victims. This marked a concerning surge, with a 73% rise compared to the previous year, witnessing 173 data breach cases in 2023 as opposed to 100 cases in 2022.  

Among the sectors facing significant risk, the technology industry stands out, ranking sixth in 2023 with 167 data breach incidents. These breaches had a profound impact, affecting a staggering 65 million victims.  

The retail sector experienced the seventh-highest number of data breach incidents in 2023, totaling 119 cases. These breaches resulted in ten million victims being affected by cyberattacks.  

The non-profit/NGO sector occupies the eighth spot, grappling with 105 data breach incidents and ten million victims in 2023. Following closely in ninth position is the transportation industry, contending with 101 cyberattack-induced cases and 12 million data violation victims in 2023.   

Finally, securing the tenth position is the government sector, enduring 100 data violation cases in 2023, impacting 15 million victims nationwide. While there has been a slight uptick from the 74 reported cases in 2022, reflecting a 35% increase, it remains notably lower compared to numerous other industries.  

The study also identified the industries that experienced minimal impact from cybercriminal activities. Remarkably, the HR/staffing sector emerged as the least affected, with a mere 10 reported data violation incidents in 2023, affecting 239,000 individuals. 

Equally noteworthy is the social services sector, which saw 15 instances of data breaches in 2023, significantly fewer compared to other industries. Consequently, it affected the fewest number of victims, totaling just 193,000 individuals. 

Commenting on the findings, Stepan Solovev, CEO & Co-founder at SOAX, says: "The study has identified a concerningly sharp rise in cyber incidents across all US industries in 2023, which is particularly alarming, especially within the healthcare and financial services industries. These sectors store vast amounts of sensitive information, making them lucrative targets for cybercriminals.  

"Maintaining effective cybersecurity practices is crucial for mitigating risks and protecting against potential breaches. It is crucial that organizations within these sectors continue to invest in cybersecurity defense mechanisms. This includes thorough and regular employee training, encouraging staff to stay vigilant against cyber threats.   

"The increase in attacks demonstrates that cybercriminals pose an increasing threat. Industries must adapt and evolve with these technological advancements to ensure they are protected from cyberattacks."  

For more information:  

Sources: Identity Theft Resource Center (ITRC) – 2023 Data Breach Report  


Data was collected on the number of data violation cases due to cyberattacks in the United States from 2020 to 2023 by industry. These industries were then ranked in order of vulnerability, determined by the frequency of cyberattack occurrences.   

Moreover, supplementary data was collected on the number of victims to reinforce the ranking results. 

Related content:

As Cyberattack Jeopardizes Physician Practices, AMA Demands Action

AMA Presents Relief Proposals to Federal Officials to Support Physicians Impacted by Change Healthcare Hack

Life After Change Cyberattack: Without Payment for Claims, Physicians Struggle to Keep Practices Afloat

Related Content

News | ASTRO

May 17, 2024 — Registration opens today for the American Society for Radiation Oncology's (ASTRO) 66th Annual Meeting ...

Time May 17, 2024
News | Enterprise Imaging

May 16, 2024 — AGFA HealthCare announced that St. Vincent’s Private Hospital in Dublin, Ireland, has chosen to implement ...

Time May 16, 2024
News | Artificial Intelligence

May 16, 2024 — deepc, the globally recognized digital medicine pioneer and market leader behind the leading AI operating ...

Time May 16, 2024
Sponsored Content | Case Study | Enterprise Imaging

Having the most efficient clinical workflows with enhanced diagnostic capabilities is a major goal for clinicians and ...

Time May 16, 2024
News | Enterprise Imaging

May 15, 2024 — etherFAX announced the expansion of its partnership with Hyland, a leading global provider of intelligent ...

Time May 15, 2024
News | Radiology Imaging

May 13, 2024 — National Basketball Association (NBA), the National Basketball Players Association (NBPA), and the Next ...

Time May 13, 2024
News | Radiation Oncology

May 10, 2024 — Mariana Oncology, a fully integrated biotechnology company pioneering a new era of radiopharmaceutical ...

Time May 10, 2024
News | ARRS

May 8, 2024 — Compared to males, women in radiology are at a consistently higher risk of not matching into diagnostic ...

Time May 08, 2024
News | Contrast Media

May 8, 2024 — Swedish biotech company Ascelia Pharma AB has announced that its liver imaging drug candidate, Orviglance ...

Time May 08, 2024
News | ARRS

May 7, 2024 — The American Roentgen Ray Society (ARRS) announced that Philip Costello, MD, the 118th ARRS President and ...

Time May 07, 2024
Subscribe Now