Research led by Brigham and Women’s Hospital has shown that hospitals are hugely vulnerable to potentially disastrous phishing attacks.