AI, deepfakes and other cybersecurity threats facing hospitals

More than 200 cyberattacks were aimed at hospitals and health systems in the first half of 2023, and millions of people have been affected by breaches of private health information.

But cybersecurity experts say health systems have to prepare for emerging threats, including attacks powered by artificial intelligence. Hospitals will also have to be ready for “deepfakes,” manufactured audio or video of executives.

Industry leaders discussed these threats in a special report by Chief Healthcare Executive® on emerging dangers in healthcare.

When asked about looming threats to healthcare in cybersecurity, Limor Kessem, a senior cybersecurity consultant for IBM Security, cited deepfakes.

“All these technologies that are able to fake people's voices, and are able to fake people's images and so on, I think that's going to be a major problem,” says Limor Kessem, a senior cybersecurity consultant for IBM Security.

• Read more: The average cost of healthcare data breaches rises to nearly $11 million

Lee Kim, senior principal for cybersecurity and privacy at HIMSS, said in a December interview with Chief Healthcare Executive that health systems will see more deepfakes.

“Deepfakes, I predict, will make a significant entry point into healthcare as well as other industries,” Kim said.

Analysts say AI could offer significant advantages to healthcare organizations in deterring attackers. But they note that cyberattackers are going to be using AI to try and get into network systems.

Steve Cagle, the CEO of Clearwater, a cybersecurity firm, sees AI as an emerging danger, and a potential tool to strengthen defenses.

“It’s going to be a bit of a battle as time goes on to see who can win the AI race,” Cagle says.