Assessment of the Impact of Cyber-Attacks and Security Breaches in Diagnostic Systems on the Healthcare Sector

Kushal Srivastava; Katja Faist; Benjamin Lickert; Karen Neville; Nora McCarthy; Mirjam Fehling-Kaschek; Alexander Stolz

doi:10.1109/CSR61664.2024.10679475

Assessment of the Impact of Cyber-Attacks and Security Breaches in Diagnostic Systems on the Healthcare Sector

Kushal Srivastava
, Katja Faist
, Benjamin Lickert
, Karen Neville
, Nora McCarthy
, Mirjam Fehling-Kaschek
, Alexander Stolz

Research output: Chapter in Book/Report/Conference proceedings › Chapter › peer-review

Abstract

The healthcare sector has become a prime target for cyber-attacks, with major attacks and disruptions reported in 2024. Due to the time criticality of operations and potential business impacts, the attack information shared is very restrictive, and sometimes the event is not even reported. The natural reaction of the industry has been investment into state-of-the-art intrusion detection systems and artificial intelligence (AI) based solutions for early detection of attacks. However, in the absence of a guaranteed protection against such attacks and considering the widespread use of highly vulnerable legacy systems, preparation is key. This paper explores the potential effects of ransomware cyber-attack on the performance of the hospitals. The study applies mitigation measures from the literature in an agent-based simulation setup to assess the resilience of the hospital system. The aim of the simulation is to help hospitals to understand and quantify impact of attack, optimize resources, better plan for and respond to such disruptions.

Original language	English
Title of host publication	Proceedings of the 2024 IEEE International Conference on Cyber Security and Resilience, CSR 2024
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	531-536
Number of pages	6
ISBN (Electronic)	9798350375367
DOIs	https://doi.org/10.1109/CSR61664.2024.10679475
Publication status	Published - 2024
Event	2024 IEEE International Conference on Cyber Security and Resilience, CSR 2024 - Hybrid, London, United Kingdom Duration: 2 Sep 2024 → 4 Sep 2024

Publication series

Name	Proceedings of the 2024 IEEE International Conference on Cyber Security and Resilience, CSR 2024

Conference

Conference	2024 IEEE International Conference on Cyber Security and Resilience, CSR 2024
Country/Territory	United Kingdom
City	Hybrid, London
Period	2/09/24 → 4/09/24

Keywords

agent-based simulation
business continuity
cyber-attack
Cyber-security
Cyber-threat intelligence (CTI)
ransomware
Resilience

Access to Document

10.1109/CSR61664.2024.10679475

Cite this

Srivastava, K., Faist, K., Lickert, B., Neville, K., McCarthy, N., Fehling-Kaschek, M., & Stolz, A. (2024). Assessment of the Impact of Cyber-Attacks and Security Breaches in Diagnostic Systems on the Healthcare Sector. In Proceedings of the 2024 IEEE International Conference on Cyber Security and Resilience, CSR 2024 (pp. 531-536). (Proceedings of the 2024 IEEE International Conference on Cyber Security and Resilience, CSR 2024). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/CSR61664.2024.10679475

Srivastava, Kushal ; Faist, Katja ; Lickert, Benjamin et al. / Assessment of the Impact of Cyber-Attacks and Security Breaches in Diagnostic Systems on the Healthcare Sector. Proceedings of the 2024 IEEE International Conference on Cyber Security and Resilience, CSR 2024. Institute of Electrical and Electronics Engineers Inc., 2024. pp. 531-536 (Proceedings of the 2024 IEEE International Conference on Cyber Security and Resilience, CSR 2024).

@inbook{e77954733f53430194b753e4d93e43ac,

title = "Assessment of the Impact of Cyber-Attacks and Security Breaches in Diagnostic Systems on the Healthcare Sector",

abstract = "The healthcare sector has become a prime target for cyber-attacks, with major attacks and disruptions reported in 2024. Due to the time criticality of operations and potential business impacts, the attack information shared is very restrictive, and sometimes the event is not even reported. The natural reaction of the industry has been investment into state-of-the-art intrusion detection systems and artificial intelligence (AI) based solutions for early detection of attacks. However, in the absence of a guaranteed protection against such attacks and considering the widespread use of highly vulnerable legacy systems, preparation is key. This paper explores the potential effects of ransomware cyber-attack on the performance of the hospitals. The study applies mitigation measures from the literature in an agent-based simulation setup to assess the resilience of the hospital system. The aim of the simulation is to help hospitals to understand and quantify impact of attack, optimize resources, better plan for and respond to such disruptions.",

keywords = "agent-based simulation, business continuity, cyber-attack, Cyber-security, Cyber-threat intelligence (CTI), ransomware, Resilience",

author = "Kushal Srivastava and Katja Faist and Benjamin Lickert and Karen Neville and Nora McCarthy and Mirjam Fehling-Kaschek and Alexander Stolz",

note = "Publisher Copyright: {\textcopyright} 2024 IEEE.; 2024 IEEE International Conference on Cyber Security and Resilience, CSR 2024 ; Conference date: 02-09-2024 Through 04-09-2024",

year = "2024",

doi = "10.1109/CSR61664.2024.10679475",

language = "English",

series = "Proceedings of the 2024 IEEE International Conference on Cyber Security and Resilience, CSR 2024",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "531--536",

booktitle = "Proceedings of the 2024 IEEE International Conference on Cyber Security and Resilience, CSR 2024",

address = "United States",

}

Srivastava, K, Faist, K, Lickert, B, Neville, K , McCarthy, N, Fehling-Kaschek, M & Stolz, A 2024, Assessment of the Impact of Cyber-Attacks and Security Breaches in Diagnostic Systems on the Healthcare Sector. in Proceedings of the 2024 IEEE International Conference on Cyber Security and Resilience, CSR 2024. Proceedings of the 2024 IEEE International Conference on Cyber Security and Resilience, CSR 2024, Institute of Electrical and Electronics Engineers Inc., pp. 531-536, 2024 IEEE International Conference on Cyber Security and Resilience, CSR 2024, Hybrid, London, United Kingdom, 2/09/24. https://doi.org/10.1109/CSR61664.2024.10679475

Assessment of the Impact of Cyber-Attacks and Security Breaches in Diagnostic Systems on the Healthcare Sector. / Srivastava, Kushal; Faist, Katja; Lickert, Benjamin et al.
Proceedings of the 2024 IEEE International Conference on Cyber Security and Resilience, CSR 2024. Institute of Electrical and Electronics Engineers Inc., 2024. p. 531-536 (Proceedings of the 2024 IEEE International Conference on Cyber Security and Resilience, CSR 2024).

Research output: Chapter in Book/Report/Conference proceedings › Chapter › peer-review

TY - CHAP

T1 - Assessment of the Impact of Cyber-Attacks and Security Breaches in Diagnostic Systems on the Healthcare Sector

AU - Srivastava, Kushal

AU - Faist, Katja

AU - Lickert, Benjamin

AU - Neville, Karen

AU - McCarthy, Nora

AU - Fehling-Kaschek, Mirjam

AU - Stolz, Alexander

PY - 2024

Y1 - 2024

N2 - The healthcare sector has become a prime target for cyber-attacks, with major attacks and disruptions reported in 2024. Due to the time criticality of operations and potential business impacts, the attack information shared is very restrictive, and sometimes the event is not even reported. The natural reaction of the industry has been investment into state-of-the-art intrusion detection systems and artificial intelligence (AI) based solutions for early detection of attacks. However, in the absence of a guaranteed protection against such attacks and considering the widespread use of highly vulnerable legacy systems, preparation is key. This paper explores the potential effects of ransomware cyber-attack on the performance of the hospitals. The study applies mitigation measures from the literature in an agent-based simulation setup to assess the resilience of the hospital system. The aim of the simulation is to help hospitals to understand and quantify impact of attack, optimize resources, better plan for and respond to such disruptions.

AB - The healthcare sector has become a prime target for cyber-attacks, with major attacks and disruptions reported in 2024. Due to the time criticality of operations and potential business impacts, the attack information shared is very restrictive, and sometimes the event is not even reported. The natural reaction of the industry has been investment into state-of-the-art intrusion detection systems and artificial intelligence (AI) based solutions for early detection of attacks. However, in the absence of a guaranteed protection against such attacks and considering the widespread use of highly vulnerable legacy systems, preparation is key. This paper explores the potential effects of ransomware cyber-attack on the performance of the hospitals. The study applies mitigation measures from the literature in an agent-based simulation setup to assess the resilience of the hospital system. The aim of the simulation is to help hospitals to understand and quantify impact of attack, optimize resources, better plan for and respond to such disruptions.

KW - agent-based simulation

KW - business continuity

KW - cyber-attack

KW - Cyber-security

KW - Cyber-threat intelligence (CTI)

KW - ransomware

KW - Resilience

UR - https://www.scopus.com/pages/publications/85206193907

U2 - 10.1109/CSR61664.2024.10679475

DO - 10.1109/CSR61664.2024.10679475

M3 - Chapter

AN - SCOPUS:85206193907

T3 - Proceedings of the 2024 IEEE International Conference on Cyber Security and Resilience, CSR 2024

SP - 531

EP - 536

BT - Proceedings of the 2024 IEEE International Conference on Cyber Security and Resilience, CSR 2024

PB - Institute of Electrical and Electronics Engineers Inc.

T2 - 2024 IEEE International Conference on Cyber Security and Resilience, CSR 2024

Y2 - 2 September 2024 through 4 September 2024

ER -

Srivastava K, Faist K, Lickert B, Neville K , McCarthy N, Fehling-Kaschek M et al. Assessment of the Impact of Cyber-Attacks and Security Breaches in Diagnostic Systems on the Healthcare Sector. In Proceedings of the 2024 IEEE International Conference on Cyber Security and Resilience, CSR 2024. Institute of Electrical and Electronics Engineers Inc. 2024. p. 531-536. (Proceedings of the 2024 IEEE International Conference on Cyber Security and Resilience, CSR 2024). doi: 10.1109/CSR61664.2024.10679475

Assessment of the Impact of Cyber-Attacks and Security Breaches in Diagnostic Systems on the Healthcare Sector

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this