Health organizations will face additional challenges associated with the transition to connected medical devices and other smart healthcare equipment. Recent successful attacks on health organizations (for example, ransomware attacks on hospitals and critical patient data) show that either organizations are failing to meet compliance requirements or there are already serious gaps in standards and practices.

Ransoming critical, protected patient data is serious; formulating and delivering real-life attacks on medical devices is much worse. Evolving technologies and future attacks may make today's problems pale in comparison.