Seqrite, the enterprise security arm of Quick Heal Technologies, has released its India Cyber Threat Report 2025, revealing that healthcare organisations accounted for 21.82% of all cyberattacks in the country during 2024—more than any other sector. The report highlights that India’s rapidly digitising healthcare landscape, with its high volume of sensitive patient data and mission-critical systems, has become a primary target for cybercriminals.
Seqrite researchers flagged an uptick in ransomware operations, malware disguised as medical software, and phishing campaigns impersonating health agencies. Attacks by groups such as LockBit 3.0 and RansomHub have encrypted hospital systems and disrupted care, exploiting outdated defences and the urgency of uninterrupted services. Of particular concern is the 14.5% share of attacks attributed to behaviour-based malware, which can bypass traditional defences by mimicking legitimate software.
Systemic vulnerabilities span hospital networks and IoT devices
Threat actors are increasingly exploiting vulnerabilities in hospital networks, telemedicine platforms, and connected medical devices. The report details how phishing attacks compromised 37% of healthcare staff in 2024, often through emails impersonating government bodies or insurance firms. These campaigns undermine trust, leak sensitive data, and can halt life-saving services through system encryption and network outages.
Also read: TMC, GE Partner to Advance Cancer Care in India
Seqrite’s analysts warn that the convergence of high-value data, legacy infrastructure, and minimal downtime tolerance has created a “perfect storm” for exploitation. The company advocates urgent implementation of advanced security layers such as endpoint detection and response, real-time threat analytics, and behaviour-based ransomware defence.
Industry urged to adopt proactive, AI-led cyber resilience
To mitigate the threat, Seqrite is recommending adoption of extended detection and response (XDR) solutions that unify endpoint, network, and cloud monitoring. The company’s latest AI-driven platforms—Seqrite Threat Intel and the SMAP (Seqrite Malware Analysis Platform)—aim to give defenders a head start against sophisticated attacks.
The report serves as a call to action for healthcare leaders to invest in adaptive cyber resilience strategies. Seqrite has urged the industry to adopt AI-ready, real-time security infrastructure to stay ahead of threat actors increasingly leveraging generative AI and deepfakes for deception and disruption.
