New data reporting on the incidence of malware and ransomware incidents in healthcare find that the majority of physicians are experiencing cyberattacks while many fear they are in the line of fire for future attacks. At the same time, most providers believe their practices are complying with the HIPAA security requirements. These surveys of physician sentiment stand in stark juxtaposition to the results of HIPAA compliance audits conducted over five years that found very few providers have adequate information security management practices to safeguard their data.