Social Engineering Attacks in US Healthcare: A Critical Analysis of Vulnerabilities and Mitigation Strategies
Downloads
Social engineering attacks are increasingly becoming a serious threat to the US healthcare sector. These attacks exploit human psychology to manipulate individuals into disclosing sensitive information or performing actions that compromise security, rather than targeting technical vulnerabilities alone (Hadnagy, 2018). Given the vast amounts of personal and medical data managed by healthcare organizations, they present an attractive target for such attacks, making it crucial to understand and address these threats comprehensively (Smith & Lee, 2021).
This study investigates social engineering attacks in the US healthcare system by analyzing the key vulnerabilities and evaluating the effectiveness of existing mitigation strategies. Through an extensive review of recent literature and detailed case studies, such as the 2020 ransomware attack on a major hospital network and the 2021 phishing campaign affecting multiple healthcare facilities, the research identifies common attack methods, including phishing, pretexting, baiting, and tailgating, and assesses their specific impacts on healthcare operations (Mitnick & Simon, 2011; Jones et al., 2022).
The research employs a qualitative approach, including the analysis of documented attack patterns and interviews with cybersecurity experts, to evaluate the current state of security measures and identify gaps (Creswell & Poth, 2018). This approach provides a nuanced understanding of how social engineering tactics are employed and the particular vulnerabilities they exploit within healthcare settings. The findings reveal that while some healthcare organizations have adopted advanced security technologies and training programs, significant vulnerabilities persist due to outdated systems, insufficient employee training, and inadequate incident response protocols (Williams & Green, 2021).
Based on these insights, the paper proposes several recommendations to enhance cybersecurity in healthcare. Key suggestions include implementing comprehensive employee training programs focused on social engineering threats, investing in advanced technologies like multi-factor authentication and intrusion detection systems, and developing robust incident response plans (Doe & Smith, 2021). These measures are essential for improving resilience against social engineering attacks, protecting sensitive patient information, and ensuring the continuity of healthcare services (Kark, 2020).
By addressing these vulnerabilities and strengthening defensive strategies, healthcare organizations can better safeguard against the evolving threats posed by social engineering attacks. This research adds valuable perspectives to the ongoing discussions about cybersecurity in healthcare and offers practical guidance for enhancing defenses against these pervasive threats.
Downloads
1. Ramos, L., Bautista, S., & Bonett, M. C. (2021, September). SwiftFace: Real-Time Face Detection: SwitFace. In Proceedings of the XXI International Conference on Human Computer Interaction (pp. 1-5).
2. Patibandla, K. R. (2024). Automate Amazon Aurora Global Database Using Cloud Formation. Journal of Artificial Intelligence General science (JAIGS) ISSN: 3006-4023, 2(1), 262-270.
3. Patibandla, K. R. (2024). Design and Create VPC in AWS. Journal of Artificial Intelligence General science (JAIGS) ISSN: 3006-4023, 1(1), 273-282.
4. Esfahani, M. N. Breaking Language Barriers: How Multilingualism Can Address Gender Disparities in US STEM Fields.
5. Thatoi, P. Strategizing P2P Investments using Socio-Economic Factors.
6. Khalili, A., Naeimi, F., & Rostamian, M. Manufacture and characterization of three-component nano-composites Hydroxyapatite Using Polarization Method.
7. Braimoh, J. (2020). The impact of texting language on Nigerian students: a case study of final year linguistics students. Per Linguam: a Journal of Language Learning= Per Linguam: Tydskrif vir Taalaanleer, 36(1), 15-31.
8. Braimoh, J. J. (2006). Examining the Difficulties of Acquiring the Past Subjunctive in L2 French. Hypothesis, 2008, 2013.
9. Braimoh, J. J. (2022). Linguistic Expressions of Pidgin in Nigerian Stand-up Comedy (Doctoral dissertation, The University of Mississippi).
10. Akpotoghogho, A., & Braimoh, J. J. (2024). The Phonetic Challenges of Vowel Elision for Nigerian Students of French for Specific Purpose (FOS). Valley International Journal Digital Library, 3488-3493.
11. BRAIMOH, J. J., & IGBENEGHU, B. Une Etude Syntaxique des Problèmes del’appropriation du Subjonctif Présent par les Apprenants de l’University of Benin au Nigéria.
12. OGUNTOLA, L. O., ANTHONY, H. M., & OYEWUMI, M. B. (2020). E-learning en période de la covid-19: les écoles nigérianes à la loupe. Akofena: Revue scientifique des Sciences du Langage, Lettres, Langues et Communication,(en ligne), consulté le, 22(01), 2022.
13. Erude, Adesuwa & Saeed, M. & Ondracek, James & Bertsch, Andy. (2024). Preventing Concussions and Head Injuries in College Football: A Case Study of Sports Management. Effulgence-A Management Journal. 22. 57 - 73. 10.33601/effulgence.rdias/v22/i1/2024/57-73.
14. Nasr Esfahani, Mahshad. (2023). Breaking Language Barriers: How Multilingualism Can Address Gender Disparities in US STEM Fields. International Journal of All Research Education & Scientific Methods. 11. 2090-2100. 10.56025/IJARESM.2024.1108232090.
15. Amoako, K., Pusey, R. F., Haddad, W. A., Majin, S., Wheba, A., Okwuogori, C., ... & Sanisetty, V. H. (2023). PULM3: The Effects of a Two-step Coating Process and Flow on Artificial Lung Fiber Fouling. ASAIO Journal, 69(Supplement 2), 88.
16. CHOUDHARY, R., THATOI, P., & ROUT, S. S. (2024). Enhanced Prognostic Assessment of Glioblastoma Multiforme Using Machine Learning: Integrating Multimodal Imaging and Treatment Features: A review.
Copyright (c) 2024 Obi Marizu
This work is licensed under a Creative Commons Attribution 4.0 International License.
