Why Healthcare Ransomware Attacks Are HIPAA Data Breaches: Ransomware attacks need to be disclosed as unauthorized exposures of private information because they are every bit as dangerous as the outright theft of the laptop, desktop, or server that they infect.