Many of the issues with the state of healthcare cybersecurity revolve around
resources. Hospitals tend to use hardware and applications much longer
than other industries, due to budget constraints, lack of personnel, and the
perceived inconvenience of replacements and downtime. Many hospitals and
offices are still running PCs using Windows 7, for which extended support
ended in January 2020. Facilities rely on connected devices like monitors,
imaging machines, scanners, and other equipment running obsolete
operating systems with known security flaws… but lack of available expertise
and funding leaves these targets exposed to potential cyberattack.