For almost 20 years, ECRI, a global healthcare security organization, has published its list of the top 10 health technology risks. This year’s edition is crowned by a rapidly evolving technology that holds great promise for healthcare, but is not short of negative risks: artificial intelligence.
WHY IT IS IMPORTANT
“While AI has the potential to improve efficiency and outcomes, it poses significant risks to patients if not properly evaluated and managed,” ECRI said in announcing the 2025 report.
“AI has grown from its earliest applications in medical imaging to influence virtually every area of healthcare, including diagnosis, documentation and appointment scheduling. Even AI applications involving ancillary systems, which are not regulated as medical devices, can have a profound impact on patient care. ” according to ECRI.
AI hallucinations or other misleading feedback from poorly calibrated algorithms are of particular concern, of course. Results from machine learning models — especially when those models are trained on biased data — can vary widely across patient populations, researchers note, posing risks to health equity and patient safety for underrepresented or underserved communities.
The top 10 health technology risks established by ECRI for 2025:
-
Risks related to AI-based health technologies.
-
Unmet technology support needs for patients receiving home care.
-
Vulnerable technology providers and cybersecurity threats.
-
Substandard or fraudulent medical devices and supplies.
-
Fire hazard from additional oxygen.
-
Dangerously low default alarm limits on anesthesia units.
-
Poorly managed temporary holds on medication orders.
-
Poorly managed infusion lines.
-
Harmful medical adhesive products.
-
Incomplete investigations of infusion system incidents.
ECRI defines a health technology hazard as any “defect in a device or system, design feature or method of use which could, in certain circumstances, endanger patients or users” .
The group takes what it calls a “total systems approach to security,” aimed at helping healthcare professionals, administrators, device manufacturers, policymakers, researchers and patients themselves reduce preventable incidents of harm while providing care.
Its teams focus on various aspects – human factors, engineering, device security, medication safety, infection control – that impact and arise from technology deployments in healthcare organizations, and work to recommend security solutions at scale of the system.
ECRI notes that the topics and technologies listed each year “are not necessarily the most frequently reported issues nor those associated with the most serious consequences”, although these factors are a key consideration.
Instead, the annual report reflects its judgment on “risks that should receive immediate attention to help health care providers, device manufacturers, and others prioritize their patient safety efforts.” “.
Comprehensive Top 10 Health Technology Risks report for ECRI members details steps health systems, vendors and other IT leaders are taking to reduce security risks patients. Access an executive brief here.
THE BIGGEST TREND
ECRI’s 2024 list had similar themes, focusing on risks associated with remote patient monitoring and other home medical devices (No. 1) and insufficient AI governance (No. ° 5). Past years have focused on the dangers of infusion pumps and gaps in software management and, of course, cybersecurity threats like ransomware.
ON THE FILE
“The promise of artificial intelligence’s capabilities should not distract us from its risks or its ability to harm patients and providers,” Dr. Marcus Schabacker, president and CEO of ECRI, said in a statement . “Balancing AI innovation with privacy and security will be one of the most challenging and defining efforts in modern medicine.
“AI is only as good as the data it is fed and the safeguards that govern its use,” he added. “Healthcare stakeholders at all levels need to think critically about the integration of AI, as they would any new technology.”
Mike Miliard is Editor-in-Chief of Healthcare IT News
Email the author: mike.miliard@himssmedia.com
Healthcare IT News is a HIMSS publication.