EDP Sciences logo
Submit your paper
Search
Menu
All issues Volume 58 / No 1 (March 2026) J Extra Corpor Technol, 58 1 (2026) 3-18 References
Open Access
Issue
J Extra Corpor Technol
Volume 58, Number 1, March 2026
Page(s) 3 - 18
DOI https://doi.org/10.1051/ject/2025064
Published online 13 March 2026
  1. AlanaziAT. Clinicians’ perspectives on healthcare cybersecurity and cyber threats. Cureus. 2023;15(10):e47026. [Google Scholar]
  2. JavaidM, HaleemA, SinghRP, SumanR. Towards insighting cybersecurity for healthcare domains: A comprehensive review of recent practices and trends. Cyber Secur Appl. 2023;1:100016. [Google Scholar]
  3. ArgawST, Troncoso-PastorizaJR, LaceyD, et al. Cybersecurity of hospitals: Discussing the challenges and working towards mitigating the risks. BMC Med Inform Decis Mak. 2020;20:1–10. [Google Scholar]
  4. BurkeW, StranieriA, OseniT, GondalI. The need for cybersecurity self-evaluation in healthcare. BMC Med Inform Decis Mak. 2024;24(1):133. [Google Scholar]
  5. ClarkeM, MartinK. Managing cybersecurity risk in healthcare settings. Healthc Manage Forum. 2024;37(1):17–20. [Google Scholar]
  6. CoventryL, BranleyD. Cybersecurity in healthcare: A narrative review of trends, threats and ways forward. Maturitas. 2018;113:48–52. [Google Scholar]
  7. CartwrightAJ. The elephant in the room: Cybersecurity in healthcare. J Clin Monit Comput. 2023;37(5):1123–1132. [Google Scholar]
  8. NifakosS, ChandramouliK, NikolaouCK, et al. Influence of human factors on cyber security within healthcare organisations: A systematic review. Sensors. 2021;21(15):5119. [Google Scholar]
  9. BhuyanSS, KabirUY, EscarenoJM, et al. Transforming healthcare cybersecurity from reactive to proactive: current status and future recommendations. J Med Syst. 2020;44:1–9. [Google Scholar]
  10. Jerry-EgembaN. Safe and sound: Strengthening cybersecurity in healthcare through robust staff educational programs. Healthc Manage Forum. 2024;37(1):21–25. [Google Scholar]
  11. ArgawST, BempongNE, Eshaya-ChauvinB, FlahaultA. The state of research on cyberattacks against hospitals and available best practice recommendations: a scoping review. BMC Med Inform Decis Mak. 2019;19:1–11. [CrossRef] [PubMed] [Google Scholar]
  12. KesslerSR, PindekS, KleinmanG, AndelSA, SpectorPE. Information security climate and the assessment of information security risk among healthcare employees. Health Informat J. 2020;26(1):461–473. [Google Scholar]
  13. Imprivata. If 95% of cyber-attacks are due to human error, why have so few clinicians been trained to avoid them?. 2022. Available at https://www.imprivata.com/blog/if-95-cyber-attacks-are-due-human-error-why-have-so-few-clinicians-been-trained-avoid-them. Accessed September 9, 2024. [Google Scholar]
  14. IBM. Cost of a data breach report 2024. 2024. Available at https://www.ibm.com/reports/data-breach. Accessed August 20, 2024. [Google Scholar]
  15. ChoiSJ, JohnsonME, LehmannCU. Data breach remediation efforts and their implications for hospital quality. Health Serv Res. 2019;54(5):971–980. [Google Scholar]
  16. U.S. Department of Health and Human Services. Fact Sheet: Ransomware and HIPAA. 2021. Available at https://www.hhs.gov/hipaa/for-professionals/security/guidance/cybersecurity/ransomware-fact-sheet/index.html. Accessed September 12, 2024. [Google Scholar]
  17. TullyJ, SelzerJ, PhillipsJP, O’ConnorP, DameffC. Healthcare challenges in the era of cybersecurity. Health Secur. 2020;18(3):228–231. [Google Scholar]
  18. Arctic Wolf. Top 18 Healthcare industry cyber attacks of the decade. 2024. Available at https://arcticwolf.com/resources/blog/top-healthcare-industry-cyberattacks. Accessed August 30, 2024. [Google Scholar]
  19. The HIPAA Journal. January 2024 Cyberattack on Lurie Children’s Hospital Affects 792K Individuals. 2024. Available at https://www.hipaajournal.com/january-2024-cyberattack-on-lurie-childrens-hospital-affects-792k-individuals. Accessed September 20, 2024. [Google Scholar]
  20. TechTarget. BianLian cyberattack hits Boston Children’s Health Physicians. 2024. Available at https://www.techtarget.com/healthtechsecurity/news/366613956/BianLian-cyberattack-hits-Boston-Childrens-Health-Physicians. Accessed January 28, 2025. [Google Scholar]
  21. International Perfusion Association. LivaNova reports cyberattack compromising US patients’ data. 2024. Available at https://iperfusion.org/livanova-reports-cyberattack-compromising-us-patients-data. Accessed August 30, 2024. [Google Scholar]
  22. Security Week. Ransomware attack hits OneBlood blood bank, disrupts medical operations. 2024. Available at https://www.securityweek.com/ransomware-attack-hits-oneblood-blood-bank-disrupts-medical-operations/. Accessed January 28, 2025. [Google Scholar]
  23. International Committee of the Red Cross. Sophisticated cyber-attack targets red cross red crescent data on 500, 000 people. 2022. Available at https://www.icrc.org/en/document/sophisticated-cyber-attack-targets-red-cross-red-crescent-data-500000-people. Accessed October 3, 2024. [Google Scholar]
  24. The HIPAA Journal. Initial conference takes place for consolidated change healthcare data breach lawsuit. 2024. Available at https://www.hipaajournal.com/change-healthcare-responding-to-cyberattack. Accessed September 24, 2024. [Google Scholar]
  25. U.S. Food & Drug Administration. Software as a medical device (SaMD). 2018. Available at https://www.fda.gov/medical-devices/digital-health-center-excellence/software-medical-device-samd. Accessed August 14, 2024. [Google Scholar]
  26. NigrinDJ. When “hacktivists” target your hospital. N Engl J Med. 2014;371(5):393–395. [Google Scholar]
  27. BeaversJ, PournouriS. Recent cyber attacks and vulnerabilities in medical devices and healthcare institutions. Blockchain and Clinical Trial: Securing Patient Data. Springer Cham. 2019;249–267. [Google Scholar]
  28. Softpedia. Critical medical equipment vulnerable to LDAP and SQL injection attacks. 2015. Available at https://news.softpedia.com/news/critical-medical-equipment-vulnerable-to-ldap-and-sql-injection-attacks-497012.shtml. Accessed August 30, 2024. [Google Scholar]
  29. American Hospital Association. CISA warns of high-risk cyber vulnerability for Medtronic cardiac device data management system. 2023. Available at https://www.aha.org/news/headline/2023–07-06-cisa-warns-high-risk-cyber-vulnerability-medtronic-cardiac-device-data-management-system. Accessed October 1, 2024. [Google Scholar]
  30. JAMA Network. Cybersecurity risk for Medtronic insulin pump. 2022. Available at https://jamanetwork.com/journals/jama/fullarticle/2797895. Accessed October 1, 2024. [Google Scholar]
  31. RjoubG, BentaharJ, WahabOA, et al. A survey on explainable artificial intelligence for cybersecurity. IEEE Trans Network Serv Manage. 2023;20(4):5115–5140. [Google Scholar]
  32. Wired. Medical devices are the next security nightmare. 2017. Available at https://www.wired.com/2017/03/medical-devices-next-security-nightmare. Accessed August 14, 2024. [Google Scholar]
  33. MontañezR, GolobE, XuS. Human cognition through the lens of social engineering cyberattacks. Front Psychol. 2020;11:1755. [Google Scholar]
  34. Wired. The hidden injustice of cyberattacks. 2024. Available at https://www.wired.com/story/cybersecurity-marginalized-communities-problem. Accessed August 9, 2024. [Google Scholar]
  35. Congress.gov. H.R.2617 – Consolidated Appropriations Act, 2023. 2022. Available at https://www.congress.gov/bill/117th-congress/house-bill/2617/text. Accessed September 25, 2024. [Google Scholar]
  36. U.S. Food and Drug Administration. Select updates for the premarket cybersecurity guidance: section 524b of the FD&C act. 2024. Available at https://www.fda.gov/regulatory-information/search-fda-guidance-documents/select-updates-premarket-cybersecurity-guidance-section-524b-fdc-act. Accessed August 20, 2024. [Google Scholar]
  37. UpendraP, PrasadP, JonesG, FortuneH. Operationalizing medical device cybersecurity at a tertiary care medical center. Biomed Instrum Technol. 2015;49(4):251–258. [Google Scholar]
  38. U.S. Food & Drug Administration. FDA CDRH and medical device cybersecurity: response to NIST regarding president’s executive order (EO) on improving the cybersecurity of the federal government (EO 14028). 2021. Available at https://www.fda.gov/media/149954/download?attachment. Accessed August 20, 2024. [Google Scholar]
  39. American Hospital Association. Third-party cyber risk impacts the health care sector the most. Here’s how to prepare. 2024. Available at https://www.aha.org/news/aha-cyber-intel/2024–08-05-third-party-cyber-risk-impacts-health-care-sector-most-heres-how-prepare. Accessed August 30, 2024. [Google Scholar]
  40. United States Senate Committee on Homeland Security & Governmental Affairs. Use of cryptocurrency in ransomware attacks, available data, and national security concerns. 2022. Available at https://www.hsgac.senate.gov/wp-content/uploads/imo/media/doc/HSGAC%20Majority%20Cryptocurrency%20Ransomware%20Report_Executive%20Summary.pdf. Accessed January 28, 2025. [Google Scholar]
  41. University of Oxford. World-first “cybercrime index” ranks countries by cybercrime threat level. 2024. Available at https://www.ox.ac.uk/news/2024–04-10-world-first-cybercrime-index-ranks-countries-cybercrime-threat-level. Accessed August 30, 2024. [Google Scholar]
  42. American Hospital Association. Agencies issue advisory on threat of China-based cyber group. 2024. Available at https://www.aha.org/news/headline/2024–07-09-agencies-issue-advisory-threat-china-based-cyber-group. Accessed September 17, 2024. [Google Scholar]
  43. BBC. Police launch homicide inquiry after German hospital hack. 2020. Available at https://www.bbc.com/news/technology-54204356. Accessed October 3, 2024. [Google Scholar]
  44. TechTarget. Studies show ransomware has already caused patient deaths. 2023. Available at https://www.techtarget.com/searchsecurity/feature/Studies-show-ransomware-has-already-caused-patient-deaths. Accessed October 4, 2024. [Google Scholar]
  45. Healthcare IT News. Hospital ransomware attack led to infant’s death, lawsuit alleges. 2021. Available at https://www.healthcareitnews.com/news/hospital-ransomware-attack-led-infants-death-lawsuit-alleges. Accessed October 4, 2024. [Google Scholar]
  46. Mitre. Att&ck. 2024. Available at https://attack.mitre.org. Accessed on September 6, 2024. [Google Scholar]
  47. National Library of Medicine. Health Insurance Portability and Accountability Act. 2024. Available at https://www.ncbi.nlm.nih.gov/books/NBK500019. Accessed September 12, 2024. [Google Scholar]
  48. The HIPAA Journal. What is the HITECH act?. 2024. Available at https://www.hipaajournal.com/what-is-the-hitech-act. Accessed on September 10, 2024 [Google Scholar]
  49. The HIPAA Journal. HIPAA violation fines. 2024. Available at https://www.hipaajournal.com/hipaa-violation-fines. Accessed October 3, 2024. [Google Scholar]
  50. National Archives. Executive order – improving critical infrastructure cybersecurity. 2013. Available at https://obamawhitehouse.archives.gov/the-press-office/2013/02/12/executive-order-improving-critical-infrastructure-cybersecurity. Accessed January 28, 2025. [Google Scholar]
  51. National Institute of Standards and Technology. Framework for improving critical infrastructure cybersecurity. 2014. Available at https://www.nist.gov/document/cybersecurity-framework-021214pdf. Accessed September 10, 2024. [Google Scholar]
  52. Cybersecurity & Infrastructure Security Agency. Secure by Design. N/A. Available at https://www.cisa.gov/securebydesign. Accessed September 12, 2024. [Google Scholar]
  53. Cybersecurity & Infrastructure Security Agency. Executive Order on Improving the Nation’s Cybersecurity. N/A. https://www.cisa.gov/topics/cybersecurity-best-practices/executive-order-improving-nations-cybersecurity. Accessed September 12, 2024. [Google Scholar]
  54. Department of Health and Human Services. HPH cybersecurity performance goals. N/A. Available at https://hhscyber.hhs.gov/performance-goals.html. Accessed August 30, 2024. [Google Scholar]
  55. Congress.gov. S.4054 – health care cybersecurity improvement act of 2024. 2024. Available at https://www.congress.gov/bill/118th-congress/senate-bill/4054/text. Accessed October 7, 2024. [Google Scholar]
  56. Congress.gov. S.4697–Healthcare cybersecurity act of 2024. 2024. Available at https://www.congress.gov/bill/118th-congress/senate-bill/4697/text. Accessed October 7, 2024. [Google Scholar]
  57. AAMI Array. FDA recognizes cybersecurity and data security AAMI standards for health technology. 2023. Available at https://array.aami.org/content/news/fda-recognition-aami-cybersecurity-standard-sw96. Accessed August 28, 2024. [Google Scholar]
  58. PourmadadkarM, LezziM, ArdebiliAA. Investigating Cyber Risks in a Surgical Process for Healthcare Cyber Resilience. In 2024 IEEE International Conference on Cyber Security and Resilience (CSR). 2024;575–580. [Google Scholar]
  59. Cybersecurity & Infrastructure Security Agency. Mitigation guide: healthcare and public health (HPH) sector. 2023. Available at https://www.cisa.gov/resources-tools/resources/mitigation-guide-healthcare-and-public-health-hph-sector. Accessed August 20, 2024. [Google Scholar]
  60. LudvigsenKR. The role of cybersecurity in medical devices regulation: Future considerations and solutions. Law Tech Hum. 2023;5(2):59–77. [Google Scholar]

Current usage metrics show cumulative count of Article Views (full-text article views including HTML views, PDF and ePub downloads, according to the available data) and Abstracts Views on Vision4Press platform.

Data correspond to usage on the plateform after 2015. The current usage metrics is available 48-96 hours after online publication and is updated daily on week days.

Initial download of the metrics may take a while.