AI-powered email attacks are exploding. Are your healthcare organizations at risk?

A new report from Paubox highlights the disconnect between perceived security readiness and actual vulnerabilities in healthcare email systems. It reveals the expensive consequences of overconfidence in email security and reveals why most organizations are far less secure than they think. Understand what mistakes put patients’ data and budgets at risk and get actionable advice to close the security gap before regulators and attackers strike

According to the report Healthcare is dangerously overconfident in email safety,,,,, Hackers use generated AI to create information that mimics the tone, structure and urgency of real communication. They go beyond the executive team’s goals and can target billing teams, HR and clinicians.

“We have seen email threats evolve faster than many tools to stop them,” said Paubox CEO Hoala Greenvy. “It’s no longer phishing, it’s mass fraud.”

According to 86% of respondents, its leaders fear their HIPAA compliance status highlights the dangerous gap between perceived readiness and regulatory reality.

“As advances in artificial intelligence and analytics continue to move forward, hackers will find more creativity and effective ways to leverage (MIS) trust, stopgap measures and convenient rewards for human weaknesses,” according to GlobalData chief analyst Amy Larsen DeCarlo.

The report is based on a survey that captures the experience and perspectives of 150 U.S. healthcare IT leaders gathered in Q1 2025, representing a variety of healthcare organizations and environments. The report also includes insights on real-world violations and user behavior data collected through internal security reviews.

To access the full report, Healthcare is dangerously overconfident in email safety,,,,, Fill in the form below.

Image: Features, Getty Images