SAN FRANCISCO–(BUSINESS WIRE)–A new Paubox report uncovers significant email security vulnerabilities in healthcare. This report reveals that 60% of healthcare organizations surveyed experienced email-related security incidents last year that exposed sensitive patient data. Despite this, most attacks go unreported. Only 5% of known phishing attacks and 4% of known HIPAA email violations are reported to security teams.

Why this matters: Email remains healthcare’s most vulnerable cyberattack entry point, and IT leaders don’t have a handle on it. Andrea Palm, Deputy Secretary of Health and Human Services, emphasizes: “Cyber attacks directly compromise patient safety, making robust email security essential.”

Report highlights:

60% of healthcare IT leaders reported email security breaches or security incidents last year.
Only 5% of known phishing attacks are reported to security teams.
Healthcare IT teams aren’t just dealing with spam or hackers—they’re dealing with infrastructure that undermines their mission.
IT leaders underestimate the costs of a HIPAA violation by a factor of four.

You might think that the gap between incidents and reporting points to a critical training or culture issue. However, 90% of healthcare organizations conduct regular employee training on email security best practices.

Hoala Greevy, CEO of Paubox, states: “Healthcare doesn’t need more patchwork fixes—it needs a mindset shift. Patients expect secure, convenient communication, and it’s on us to meet that standard. With AI, automation, and built-in encryption, we can proactively defend patient data before threats ever hit the inbox. That’s exactly what we built ExecProtect+ to do—eliminate risk at the source, not after the damage is done.”

Download the full report here: https://hubs.la/Q03hcR7X0

For media inquiries, expert commentary, or interview requests, please contact Dawn Halpin at Paubox at [email protected] or 415-795-7396.

About Paubox

Paubox offers HIPAA compliant communication solutions that empower healthcare organizations of any size to simply and securely communicate. Our suite of solutions includes HIPAA compliant encrypted email, inbound email security, HIPAA compliant email marketing, and HIPAA compliant email API for transactional communications. Our customers love our HITRUST certified solutions and we have industry-topping G2 ratings (4.9/5 stars). Learn more at paubox.com

Contacts

Media Contact:

Dawn Halpin

[email protected]

Author

Business Wire

View all posts

Business Wire 15 April 2025

1 minute read

Author

Related Articles

Mooring Music Group Acquires Royalty Rights of Mariah Carey’s “All I Want for Christmas Is You”

Gambit Cyber Raises $3.4M Seed Round Led by Expeditions, With Participation of Bitdefender Voyager Ventures, to Scale Agentic AI-driven and Risk Centric Continuous Threat Exposure Management

SOiVA Launches Deepfake Prevention Stablecoin Service Card

CELEBRITIES AND DIGNITARIES FROM AROUND THE WORLD CELEBRATE HOLOCAUST SURVIVORS ON INTERNATIONAL HOLOCAUST SURVIVORS NIGHT, DECEMBER 18, 2025