HIT Consultant November 21, 2025
Fred Pennic

What You Should Know:

Sophos’s State of Ransomware in Healthcare 2025 report reveals exploited vulnerabilities are now the leading technical cause of attacks (33%).

– The study highlights a sector becoming more resilient to encryption but facing soaring extortion-only attacks and high pressure on IT teams.

Root Causes Shift: Capacity Gaps and Exploited Vulnerabilities Lead

The latest Sophos study, based on the experiences of 292 healthcare providers, shows a significant shift in the technical and organizational root causes of ransomware attacks:

  • Top Technical Cause: For the first time in three years, exploited vulnerabilities emerged as the most common technical root cause, used in 33% of incidents.
  • Top Organizational Cause: The most common organizational factor contributing to...

Today's Sponsors

Venturous
ZeOmega

Today's Sponsor

Venturous

Continue Reading

 
Topics: Cybersecurity, Survey / Study, Technology, Trends
Related Articles:
‘Complexity is where cyber risk tends to grow’
Researchers broke every AI defense they tested. Here are 7 questions to ask vendors.
Your Organization Isn’t Cyber Ready... It Just Thinks It Is
HHS-OIG Report Highlights Key HHS Cybersecurity Challenges
NIST is rethinking its role in analyzing software vulnerabilities

Share Article