Purpose/Significance To analyze the risks of near-source cyber-attacks faced by hospitals, and to propose countermeasures. Method/Process Combined with practical work experience, the risk analysis of hospital network architecture, on-site physical environment, personnel behavior and other aspects is carried out from the perspective of near-source cyber-attacker. Then, from the perspective of defender and in combination with regulatory requirements and technical practices, countermeasures and suggestions are proposed. Result/Conclusion 5 main risks are identified, including wireless LAN cracking, exposed wired network sockets, improper configuration of self-service machines, poisoning & phishing, and sensitive information leakage. 5 preventive suggestions are put forward, including strengthening Wi-Fi management, full coverage of network terminal access, multi-department collaboration in self-service device management, disabling mobile storage media on Intranet terminals, and updating cyber-security education.