45% of healthcare respondents suffered a ransomware attack in the past 12 months; two out of three paid the ransom
Arcserve survey reveals gaps, vulnerabilities, and misconceptions in the healthcare sector, potentially hindering its ability to effectively safeguard and recover data in the event of malicious attacks and accidental data outages stemming from human error or natural events.
Key findings include:
- Prevalence: across all industry sectors, healthcare was the most targeted by ransomware attacks. 45% of healthcare respondents experienced a ransomware attack in the past 12 months.
- Impact: high ransom demands, no guarantee of recovery
- 83% of ransom demands were between US$100,000 – $1M
- 67% paid the ransom
- 45% did not recover all their data after ransomware attacks
“In the face of growing number and sophistication of ransomware attacks, the healthcare industry continues to grapple with inadequate data protection and recovery mechanisms.”
Vitali Edrenkine, Chief Marketing Officer at Arcserve
Against this threat backdrop, there were apparent preparedness weaknesses
- 82% of healthcare IT departments lack an updated disaster recovery plan
- Nearly 75% of respondents believe data backed up to a public cloud is safer than data backed up on-prem
- More than 50% of respondents mistakenly believe the cloud provider is responsible for recovering their data
Said Vitali Edrenkine, Chief Marketing Officer at Arcserve: “In the face of growing number and sophistication of ransomware attacks, the healthcare industry continues to grapple with inadequate data protection and recovery mechanisms. An ounce of prevention may be worth a pound of cure – but our latest market research shows that when it comes to ransomware resilience, too many healthcare institutions have neither. A robust backup and disaster recovery strategy is critical for healthcare organisations to build resistance to malicious attacks.”
Arcserve advocates for a transformative ‘unified data resilience’ approach within the healthcare sector to bolster preparedness. By adopting a unified data resilience strategy, organisations strengthen their defensive posture and have the necessary tools to expedite data recovery in the aftermath of ransomware attacks.