A Bitter Pill – How Ransomware is Crippling Hospitals

Hospitals don’t just store data. They safeguard stories, care plans, and lives. When ransomware hits it’s not just a system crash, it’s a trust collapse.” — Jeffrey Bell

In this episode, Jody, Meghan, and Matt are joined by security researcher Jeffrey Bell to unpack how ransomware is increasingly crippling hospitals. Ransomware is no longer just a data problem. It’s a patient safety crisis. This conversation breaks down how hospitals are being crippled, and what defenders are doing about it. Our guest Jeffrey Bell, a dedicated security researcher, shares how ransomware is no longer just a digital threat and why it is a healthcare emergency.

Jeffrey broke down the evolution of ransomware, from file encryption to data exfiltration, and exposed how these attacks now disrupt real-world care. What shocked us most was the growing reality that hospital systems aren’t just being hacked; they are being strategically exploited. Threat actors are encrypting data and selling it or coercing patients directly if providers don’t pay up.

Jeffrey’s passion for subcategorizing over 800 healthcare entities to better track ransomware attacks impressed us. His grassroots work within Health ISAC proves that even without a formal incentive, committed defenders can make a massive impact.

Ransomware is costing money and it’s costing lives. Hospitals returning to pen and paper during an attack can delay urgent care, and in some cases, patients have died because of it.

This episode isn’t meant to scare anyone. It is intended to act as a wake-up call. If you’re in healthcare, cybersecurity can’t be a back-burner issue. And if you’re a patient (like all of us), your awareness matters. Data breaches affect real people.

We’re grateful to Jeffrey for shining a light on the human side of digital threats. Listen in, stay informed, and most importantly, keep the back door locked.

Notable Moments

• 00:01:10 – What ransomware is and how it’s evolved
• 00:04:15 – How the Colonial Pipeline and Vegas attacks sparked Jeffrey’s interest
• 00:07:10 – Why healthcare is a prime target
• 00:10:00 – How Jeffrey built a ransomware database of 800+ healthcare entities
• 00:16:00 – Rise of ransomware-as-a-service (RaaS) and competition between threat actors
• 00:20:20 – Most targeted entities: hospitals, clinics, specialized care
• 00:24:20 – Real-life consequences: delays in patient care, increased mortality risk
• 00:28:00 – The looming threat of AI-trained malicious models

Browse past episodes on our blog or listen wherever you get your favorite podcasts, including:

• Amazon Music or Audible
• Apple Podcasts or Libsyn Classic Feed
• iHeartRadio
• Spotify

Subscribe now to get notifications of new episodes in your inbox.

Have an idea for future episode topic? Share it with us.

Learn more about the security of the Redox data interoperability platform here.

Contacts

• Matt Mock: [email protected]
• Meghan McLeod: [email protected]