Healthcare organizations lag behind other industries in cybersecurity investment, allocating less than 6% of their IT budgets to security on average compared to over 15% for the federal government. Healthcare data is highly valued, with medical records selling for $50 each on the black market, much more than credit cards or social security numbers. However, 50% of healthcare organizations allocate only 0-3% of their IT budgets to security and only 23% have an ongoing risk management program, revealing gaps in healthcare cybersecurity as criminal attacks and data breaches rise.