Journal of Energy Technologies and Policy

The purpose of this research is to comprehensively analyze the cybersecurity threats facing the healthcare sector in the United States, by evaluating the impact of these threats on patient data security and healthcare operations, and propose effective strategies and solutions to mitigate these risks.  This study adopts systematic literature review to analyze cybersecurity threats to the healthcare system in the United States of America. A systematic search was conducted in databases such as PubMed, IEEE Xplore, and Google Scholar. Articles published between 2000 and 2023 were included, focusing on cybersecurity in healthcare. A total of 18 articles and reports were included in this study. The study found that the following five factors—Outdated IT Infrastructure, Phishing and Social Engineering, Ransomware, Insider Threats, and Interconnected Devices are part of the evolving challenges of cybersecurity threats in the healthcare sector. The study further found that cybersecurity threats in the healthcare sector can lead to severe disruptions in patient care, significant financial losses, and compromised sensitive information. Again, the study found that the most common cybersecurity attack to the healthcare sector include the following: Ransomware Attacks, Phishing Attacks, Insider Threats, Advanced Persistent Threats, Distributed Denial-of-Service, Data Breaches, and Vulnerabilities in IT Infrastructure. Also, it is observed from the analysis that ransomware attacks or cybersecurity threats in the healthcare sector can paralyze hospital operations, delay treatments, and potentially endanger patient lives. The study further revealed that the financial impact on healthcare organizations is also substantial, including costs associated with breach recovery, legal liabilities, and reputational damage. In order to enhance cybersecurity in the healthcare sector, several policy recommendations were suggested for adoption and implementation. Examples include: Mandate Regular Cybersecurity Training; Enforce Advanced Security Measures; Promote Adoption of Emerging Technologies; and Implement Regular Security Audits and Assessments. This study proposed that by implementing these policy recommendations, the healthcare sector can significantly bolster its defenses against cyber threats. Towards this end, by ensuring the security of healthcare systems and patient data is crucial for maintaining trust in the healthcare system and safeguarding public health. Through a proactive and coordinated approach, the healthcare sector can enhance its resilience against cybersecurity challenges and continue to deliver high-quality care in a secure environment.

Keywords: Cybersecurity, Policy, Blockchain, Threats, Hospitals, Healthcare, Digitization, Technologies, Ransomware, Phishing, IT-infrastructure, Health, Patients, and Artificial intelligence.

DOI: 10.7176/JETP/14-2-05

Publication date: June 28^th 2024