Towards understanding cybersecurity capability in Australian healthcare organisations: a systematic review of recent trends, threats and mitigation

Offner, K. L.; Sitnikova, Elena; Joiner, Keith F.; MacIntyre, C. Raina

doi:10.1080/02684527.2020.1752459

Cited by 42 publications

(39 citation statements)

References 80 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Furthermore, health services staff often have limited previous experience with remote working and with planning for this change, which leaves the sector vulnerable to cyberattacks [ 9 , 14 , 19 ]. As health services make use of a variety of medical devices, interconnectivity and interoperability create issues as they are now being accessed from outside health services’ internal network perimeter.…”

Section: Resultsmentioning

confidence: 99%

“…Likewise, VPNs also have some known and unknown vulnerabilities, both on the client and server side, which have been exploited for years by cybercriminals [ 19 ]. The DDoS attacks on health care systems [ 14 ] and the innumerable wireless connected devices [ 9 ] have created further challenges to a remote work environment.…”

Section: Resultsmentioning

confidence: 99%

“…Hakak et al [1], Williams et al [2], Schneck [17] The decreased mobility and border closures, and the increasing reliance on remote work, create challenges to health sector Weil and Murugesan [18] New technologies such as eConsultation services for patients and electronic multidisciplinary teams leave users open to a variety of attacks Boddy et al [9], Offner et al [14], Jalali et al [19], Hoffman [20], Ronquillo et al [21] Health service staff often have limited experience in working remotely, leaving the sector vulnerable to cyberattacks, such as malwares Sardi et al [15], Kim et al [22] The health care industry significantly lags behind other industries in terms of cybersecurity and digital literacy is lacking among staff working from home, making it a prominent target Schneck [17] The increase in demand for certain goods such as PPE a makes health services and governments exposed to digital scams such as luring emails with the intention of stealing sensitive information a PPE: personal protective equipment.…”

Section: Reference Changesmentioning

confidence: 99%

“…Kruse et al [ 13 ] systematically reviewed health care–related cyber threats and trends. Offner et al [ 14 ] reviewed cyber threats and mitigation strategies among Australian health care organizations. Sardi et al [ 15 ] performed a systematic review of cyber risk in health facilities.…”

Section: Introductionmentioning

confidence: 99%

See 3 more Smart Citations

Health Care Cybersecurity Challenges and Solutions Under the Climate of COVID-19: Scoping Review

He¹,

Aliyu²,

Evans³

et al. 2021

J Med Internet Res

109

View full text Add to dashboard Cite

Background COVID-19 has challenged the resilience of the health care information system, which has affected our ability to achieve the global goal of health and well-being. The pandemic has resulted in a number of recent cyberattacks on hospitals, pharmaceutical companies, the US Department of Health and Human Services, the World Health Organization and its partners, and others. Objective The aim of this review was to identify key cybersecurity challenges, solutions adapted by the health sector, and areas of improvement needed to counteract the recent increases in cyberattacks (eg, phishing campaigns and ransomware attacks), which have been used by attackers to exploit vulnerabilities in technology and people introduced through changes to working practices in response to the COVID-19 pandemic. Methods A scoping review was conducted by searching two major scientific databases (PubMed and Scopus) using the search formula “(covid OR healthcare) AND cybersecurity.” Reports, news articles, and industry white papers were also included if they were related directly to previously published works, or if they were the only available sources at the time of writing. Only articles in English published in the last decade were included (ie, 2011-2020) in order to focus on current issues, challenges, and solutions. Results We identified 9 main challenges in cybersecurity, 11 key solutions that health care organizations adapted to address these challenges, and 4 key areas that need to be strengthened in terms of cybersecurity capacity in the health sector. We also found that the most prominent and significant methods of cyberattacks that occurred during the pandemic were related to phishing, ransomware, distributed denial-of-service attacks, and malware. Conclusions This scoping review identified the most impactful methods of cyberattacks that targeted the health sector during the COVID-19 pandemic, as well as the challenges in cybersecurity, solutions, and areas in need of improvement. We provided useful insights to the health sector on cybersecurity issues during the COVID-19 pandemic as well as other epidemics or pandemics that may materialize in the future.

show abstract

Section: Resultsmentioning

confidence: 99%

Section: Resultsmentioning

confidence: 99%

Section: Reference Changesmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

Health Care Cybersecurity Challenges and Solutions Under the Climate of COVID-19: Scoping Review

He¹,

Aliyu²,

Evans³

et al. 2021

J Med Internet Res

109

View full text Add to dashboard Cite

show abstract

“…[4]- [10]. Subsequently, nowadays FHE has been widely adopted for cloud security [11] [12], e-health care privacy [13], blockchain, [14] i.e., artificial intelligence Cortex blockchain adopted somewhat FHE (SWFHE) to train and infer the model. The first generation methods, however, were somewhat similar, but they had different theoretical assumptions with complex methodologies.…”

Section: Introductionmentioning

confidence: 99%

Noise Free Fully Homomorphic Encryption Scheme Over Non-Associative Algebra

Mustafa

Azar

et al. 2020

IEEE Access

View full text Add to dashboard Cite

Among several approaches to privacy-preserving cryptographic schemes, we have concentrated on noise-free homomorphic encryption. It is a symmetric key encryption that supports homomorphic operations on encrypted data. We present a fully homomorphic encryption (FHE) scheme based on sedenion algebra over finite Z n rings. The innovation of the scheme is the compression of a 16-dimensional vector for the application of Frobenius automorphism. For sedenion, we have p 16 different possibilities that create a significant bijective mapping over the chosen 16-dimensional vector that adds permutation to our scheme. The security of this scheme is based on the assumption of the hardness of solving a multivariate quadratic equation system over finite Z n rings. The scheme results in 256n multivariate polynomial equations with 256 + 16n unknown variables for n messages. For this reason, the proposed scheme serves as a security basis for potentially post-quantum cryptosystems. Moreover, after sedenion, no newly constructed algebra loses its properties. This scheme would therefore apply as a whole to the following algebras, such as 32dimensional trigintadunion.

show abstract