I am a big fan of BakerHostetler's annual data security incident response reports because they are based on actual client experiences and data.
I just posted about their 2026 report, and commented on their healthcare sector data. As I had mentioned to nprofile1qy2hwumn8ghj7un9d3shjtnyd968gmewwp6kyqpqw4uktjur5zezprj7s7k24wxp8e94hg2m7qa250hfnn93gcj684mqjad05j (nprofile…d05j), healthcare breaches tend to get higher ransom demands and higher settlements. Take a look at the 2025 data -- the highest initial ransom demand for a health entity client was $98M.
I'd love to know who the victim was and what TA or group demanded that much.
That said, the highest ransom actually paid for a healthcare sector breach by one of their clients last year was $5M.
Big delta.
My post: https://databreaches.net/2026/04/03/bakerhostetlers-2026-report-findings-from-1250-clients-breach-experiences-in-2025/
#ransomware #healthsec #incidentresponse #statistics #phishing #ransom #malware #databreach #cybersecurity
nprofile1qy2hwumn8ghj7un9d3shjtnyd968gmewwp6kyqpqzj46mlm94ekxxlc26xk3yyse9c89jd6hrf9q6ce34w045es6a86s2tydzz (nprofile…ydzz) nprofile1qy2hwumn8ghj7un9d3shjtnyd968gmewwp6kyqpq82alpzzyrmxjl9psczfucqmnzs3g3tn9m36rjcc9s4q8q38m2d7s7sk3pe (nprofile…k3pe)
Dissent Doe :cupofcoffee:
npub1rh…klmka
2026-04-03 23:51:32 UTC
Author Public Key
npub1rh9ks6jqam8nj4kccfk505f70erhhq0g0kcr6w32c5ywyqgltdpsmklmkaSeen on
wss://relay.ditto.pubPublished at
2026-04-03 23:51:32 UTCEvent JSON
{
"id": "653cde2c0433e0d8764c7f5210ad95fa456a46b1c5d13886fcdc64ad38a98b1a",
"pubkey": "1dcb686a40eecf3956d8c26d47d13e7e477b81e87db03d3a2ac508e2011f5b43",
"created_at": 1775260292,
"kind": 1,
"tags": [
[
"p",
"757965cb83a0b2208e5e87acaab8c13e4b5ba15bf03aaa3ee99ccb14625a3d76",
"wss://relay.ditto.pub"
],
[
"p",
"14abadff65ae6c637f0ad1ad1212192e0e5937571a4a0d6331ab9f5a661ae9f5",
"wss://relay.ditto.pub"
],
[
"p",
"3abbf088441ecd2f9430c093cc0373142288ae65dc7439630585407044fb537d",
"wss://relay.ditto.pub"
],
[
"p",
"68e2e715ab26a09045abaf6e45c4b98bfdddec954a875adb93dc4d6a190d3cc2",
"wss://relay.ditto.pub"
],
[
"p",
"5813cb0c08b954765976fe9867ea38b2b1524e39b1f75ab22b326e25833aa766",
"wss://relay.ditto.pub"
],
[
"p",
"b3ca3d378b59c5dbadd6148ab9e5010a2464f6d3d4577d05293d4503969f4616",
"wss://relay.ditto.pub"
],
[
"t",
"ransomware"
],
[
"t",
"healthsec"
],
[
"t",
"incidentresponse"
],
[
"t",
"statistics"
],
[
"t",
"phishing"
],
[
"t",
"ransom"
],
[
"t",
"malware"
],
[
"t",
"databreach"
],
[
"t",
"cybersecurity"
],
[
"proxy",
"https://infosec.exchange/users/PogoWasRight/statuses/116343458497865408",
"activitypub"
],
[
"client",
"Mostr",
"31990:6be38f8c63df7dbf84db7ec4a6e6fbbd8d19dca3b980efad18585c46f04b26f9:mostr",
"wss://relay.ditto.pub"
]
],
"content": "I am a big fan of BakerHostetler's annual data security incident response reports because they are based on actual client experiences and data. \n\nI just posted about their 2026 report, and commented on their healthcare sector data. As I had mentioned to nostr:nprofile1qy2hwumn8ghj7un9d3shjtnyd968gmewwp6kyqpqw4uktjur5zezprj7s7k24wxp8e94hg2m7qa250hfnn93gcj684mqjad05j, healthcare breaches tend to get higher ransom demands and higher settlements. Take a look at the 2025 data -- the highest initial ransom demand for a health entity client was $98M.\n\nI'd love to know who the victim was and what TA or group demanded that much. \n\nThat said, the highest ransom actually paid for a healthcare sector breach by one of their clients last year was $5M. \n\nBig delta. \n\nMy post: https://databreaches.net/2026/04/03/bakerhostetlers-2026-report-findings-from-1250-clients-breach-experiences-in-2025/\n\n#ransomware #healthsec #incidentresponse #statistics #phishing #ransom #malware #databreach #cybersecurity \n\nnostr:nprofile1qy2hwumn8ghj7un9d3shjtnyd968gmewwp6kyqpqzj46mlm94ekxxlc26xk3yyse9c89jd6hrf9q6ce34w045es6a86s2tydzz nostr:nprofile1qy2hwumn8ghj7un9d3shjtnyd968gmewwp6kyqpq82alpzzyrmxjl9psczfucqmnzs3g3tn9m36rjcc9s4q8q38m2d7s7sk3pe",
"sig": "13b18d8965c3053bdf3ae17f04e1ccc050fbb2c56ff0a918eee75083400cba8b8a568e076a4194203da5afc95f55f8252cd0041cdd95f7f9eae35acb65442077"
}