Commentary|Articles|July 6, 2026

Your practice has more connected devices than ever. That's a cybersecurity problem

Listen
0:00 / 0:00

A four-point plan to focus attention on cybersecurity without a complete network overhaul.

A typical primary care practice today runs on more than clinical expertise: It relies on a growing network of connected technologies, from electronic health records to diagnostic equipment to devices that capture and transmit patient data in real time.

These tools have improved efficiency and expanded what primary care can deliver. But they have also introduced a risk that many practices may not be fully prepared to manage. Connected medical devices are increasingly targeted in cyberattacks. And when these systems are disrupted, the effects can reach far beyond information technology (IT) and directly impact patient care.

When a cyber issue disrupts care delivery

In a busy primary care setting, operations are tightly scheduled and highly dependent on technology. Even a short system disruption can quickly create downstream challenges.

If a cyber incident affects connected systems or devices, practices may experience loss of access to patient records, delays in laboratory results or diagnostic data or breakdowns in communication with pharmacies or specialists. Increased reliance on manual processes can significantly slow patient flow and quality of care.

Recent health care cyber incidents have shown how quickly disruptions can spread and how difficult recovery can be. What begins as a technical issue can escalate into delays in care, missed information and reduced capacity to see and treat patients. For smaller practices, the impact can be even more pronounced due to limited IT resources and tighter staffing models.

The overlooked risk inside everyday devices

Most practices focus cybersecurity efforts on laptops, servers, or email systems. But many of the devices used every day, such as electrocardiogram machines, ultrasound systems and patient monitors, are now connected to the same network in the same way.

That connectivity enables faster data sharing and supports more informed clinical decisions. At the same time, it introduces new vulnerabilities.

Many medical devices operate on older or unsupported software, require coordination across multiple vendors, and can even sit outside traditional IT visibility. On top of all that, most were not originally designed with strong cybersecurity protections. Without a clear, up-to-date, real-time inventory of connected devices, it becomes difficult to identify where potential vulnerabilities exist. This lack of visibility is one of the most common gaps in health care cybersecurity today.

Why this matters more than ever

Health care is becoming more digital at every level, including primary care. Telehealth, remote patient monitoring, and digital diagnostics are expanding access to care and helping practices manage growing patient demand.

At the same time, cyber threats are becoming more frequent and more disruptive. Health care data remain highly valuable, and systems that support clinical workflows are attractive targets because of the urgency involved in restoring operations.

When systems go down, the pressure to resume care is immediate. That urgency can make health care organizations more vulnerable to ransomware and other attacks. The result is a higher-risk environment where even smaller practices are part of a broader, interconnected system that can be affected by cyber incidents.

Security that supports clinical workflow

One of the biggest concerns for physicians is that additional security controls will slow down care delivery. In practice, effective cybersecurity should do the opposite. It should work in the background to protect systems without creating friction for clinicians or staff. That means shifting away from reactive approaches and toward more integrated, proactive strategies.

In the context of medical devices, this includes the following:

  1. Identifying and tracking connected devices across the network
  2. Monitoring for unusual activity that could indicate a threat
  3. Prioritizing vulnerabilities based on potential impact to patient care and ensuring systems can recover quickly in the event of an incident

Security measures are most effective when they align with how care is delivered. When designed thoughtfully, they can strengthen resilience without adding complexity to daily operations.

Practical steps for primary care practices

Medical device security does not require a complete overhaul of existing systems. However, it does require focused attention and clear priorities. The following practical steps can help reduce risk:

  • Start with visibility
    Develop a basic inventory of connected devices, including where they are used and how they connect to the network.
  • Focus on clinical impact
    Prioritize devices that are essential to patient care or that integrate directly with the electronic health record.
  • Engage vendors
    Work with device manufacturers and IT providers to understand available security updates, support options and best practices.
  • Prepare for disruptions
    Have a plan in place for maintaining operations during a system outage, even if it is temporary.

These four steps can help practices build a stronger foundation without overburdening staff or disrupting workflows.

Protecting trust in a connected practice

Primary care is built on consistency and trust. Patients expect that their care will be available, their information will be secure and their experience will be uninterrupted.

As more aspects of care move online and become interconnected, maintaining that trust increasingly depends on the reliability and security of underlying systems. Medical device security is part of that equation. It helps ensure that the tools clinicians rely on remain available when they are needed most.

The shift to connected health care has created new opportunities for better care, but it has also raised new challenges. Addressing those challenges requires viewing cybersecurity not as a separate function, but as an essential part of delivering care safely and effectively.

When systems are secure and reliable, care can continue without interruption, and that remains the primary goal in any practice.

Cesar Villalta is a managing director at Accenture, where he leads security for the firm's U.S. health business. He helps payers, hospitals, and health systems defend the technology their patient care depends on, from ransomware and major breaches to the growing fleet of connected medical devices and the new risks artificial intelligence brings to both sides of the fight. His work centers on a simple idea: In health care, cybersecurity is patient safety.