<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE article PUBLIC "-//NLM//DTD JATS (Z39.96) Journal Publishing DTD v1.3 20210610//EN" "JATS-journalpublishing1-3.dtd">
<article article-type="research-article" dtd-version="1.3" xmlns:mml="http://www.w3.org/1998/Math/MathML" xmlns:xlink="http://www.w3.org/1999/xlink" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xml:lang="en"><front><journal-meta><journal-id journal-id-type="publisher-id">kulawr</journal-id><journal-title-group><journal-title xml:lang="en">Kutafin Law Review</journal-title><trans-title-group xml:lang="ru"><trans-title>Kutafin Law Review</trans-title></trans-title-group></journal-title-group><issn pub-type="ppub">2713-0525</issn><issn pub-type="epub">2713-0533</issn><publisher><publisher-name>MSAL</publisher-name></publisher></journal-meta><article-meta><article-id pub-id-type="doi">10.17803/2713-0533.2024.3.29.452-490</article-id><article-id custom-type="elpub" pub-id-type="custom">kulawr-344</article-id><article-categories><subj-group subj-group-type="heading"><subject>Research Article</subject></subj-group><subj-group subj-group-type="section-heading" xml:lang="en"><subject>DIGITAL LAW, ARTIFICIAL INTELLIGENCE AND CYBER SECURITY</subject></subj-group></article-categories><title-group><article-title>Cyber-Threat Landscape in Healthcare Industry and Legal Framework Governing Personal Health Information in India</article-title><trans-title-group xml:lang="ru"><trans-title></trans-title></trans-title-group></title-group><contrib-group><contrib contrib-type="author" corresp="yes"><contrib-id contrib-id-type="orcid">https://orcid.org/0000-0002-6919-104X</contrib-id><name-alternatives><name name-style="western" xml:lang="en"><surname>Raizada</surname><given-names>N.</given-names></name></name-alternatives><bio xml:lang="en"><p>Niharika Raizada, Assistant Professor</p><p>Bengaluru</p></bio><email xlink:type="simple">niharika95raizada@gmail.com</email><xref ref-type="aff" rid="aff-1"/></contrib><contrib contrib-type="author" corresp="yes"><contrib-id contrib-id-type="orcid">https://orcid.org/0009-0007-2298-3510</contrib-id><name-alternatives><name name-style="western" xml:lang="en"><surname>Srivastava</surname><given-names>P.</given-names></name></name-alternatives><bio xml:lang="en"><p>Pranjal Srivastava, Research Scholar</p><p>Gandhinagar</p></bio><email xlink:type="simple">niharika95raizada@gmail.com</email><xref ref-type="aff" rid="aff-2"/></contrib></contrib-group><aff xml:lang="en" id="aff-1"><institution>CHRIST University</institution><country>India</country></aff><aff xml:lang="en" id="aff-2"><institution>Rashtriya Raksha University</institution><country>India</country></aff><pub-date pub-type="collection"><year>2024</year></pub-date><pub-date pub-type="epub"><day>16</day><month>10</month><year>2024</year></pub-date><volume>11</volume><issue>3</issue><fpage>452</fpage><lpage>490</lpage><permissions><copyright-statement>Copyright &amp;#x00A9; Raizada N., Srivastava P., 2024</copyright-statement><copyright-year>2024</copyright-year><copyright-holder xml:lang="ru">Raizada N., Srivastava P.</copyright-holder><copyright-holder xml:lang="en">Raizada N., Srivastava P.</copyright-holder><license xml:lang="ru" license-type="creative-commons-attribution" xlink:href="https://creativecommons.org/licenses/by/4.0/" xlink:type="simple"><license-p>Данная работа распространяется под лицензией Creative Commons Attribution 4.0.</license-p></license><license xml:lang="en" license-type="creative-commons-attribution" xlink:href="https://creativecommons.org/licenses/by/4.0/" xlink:type="simple"><license-p>This work is licensed under a Creative Commons Attribution 4.0 License.</license-p></license></permissions><self-uri xlink:href="https://kulawr.msal.ru/jour/article/view/344">https://kulawr.msal.ru/jour/article/view/344</self-uri><abstract><p>2021 and 2022 have been the years of frequent cyberattacks. India remains in the top 25 countries severely affected by the continuous cyber-attacks and tops the list. The healthcare department is amongst the most affected area. In 2020, the healthcare department suffered a severe impact with around 348K cyber-attacks alone on Indian healthcare infrastructure. The recent occurrence of cyber-attack on AIIMS hospital in December 2022 followed by several other incidences of data breaches have made the concerned authorities pro-active on exercising vigilance and reforming the legal and technical system to protect the health infrastructure. This paper has been developed on extensive literature and focuses on describing the nature of electronic health records, the risks they are exposed to along with as to why they are so susceptible to these cyber-risks. Furthermore, the paper also deals with different kinds of threats affecting the privacy and security of electronic health records specifically. The paper analyzes Indian legal framework, briefly compares it with international legal framework (specifically US &amp; EU) and highlights the shortcomings in Indian legislative framework followed by laying down certain recommendations primarily highlighting the possible changes required in Indian legal framework and practices that can be adopted at organizational level to overcome and mitigate such risks.</p></abstract><kwd-group xml:lang="en"><kwd>cybersecurity</kwd><kwd>electronic health records (EHR)</kwd><kwd>healthcare</kwd><kwd>personal health information</kwd><kwd>cyber-threats</kwd></kwd-group></article-meta></front><back><ref-list><title>References</title><ref id="cit1"><label>1</label><citation-alternatives><mixed-citation xml:lang="ru">Adebayo, O.S. and AbdulAziz, N., (2014). An Intelligence Based Model for the Prevention of Advanced Cyber-Attacks. The 5th International Conference on Information and Communication Technology for The Muslim World (ICT4M), pp. 1–5, doi: 10.1109/ICT4M.2014.7020648.</mixed-citation><mixed-citation xml:lang="en">Adebayo, O.S. and AbdulAziz, N., (2014). An Intelligence Based Model for the Prevention of Advanced Cyber-Attacks. The 5th International Conference on Information and Communication Technology for The Muslim World (ICT4M), pp. 1–5, doi: 10.1109/ICT4M.2014.7020648.</mixed-citation></citation-alternatives></ref><ref id="cit2"><label>2</label><citation-alternatives><mixed-citation xml:lang="ru">Alder, S., (2021). Healthcare Industry Cyberattacks Increase by 45 %. The HIPAA Journal. January 6. Available at: https://www.hipaajournal.com/healthcare-industry-cyberattacks-increase-by-45/ [Accessed 23.03.2024].</mixed-citation><mixed-citation xml:lang="en">Alder, S., (2021). Healthcare Industry Cyberattacks Increase by 45 %. The HIPAA Journal. January 6. Available at: https://www.hipaajournal.com/healthcare-industry-cyberattacks-increase-by-45/ [Accessed 23.03.2024].</mixed-citation></citation-alternatives></ref><ref id="cit3"><label>3</label><citation-alternatives><mixed-citation xml:lang="ru">Almaghrabi, N.S, and Bugis, B.A., (2022). Patient Con¿ dentiality of Electronic Health Records: A Recent Review of the Saudi Literature. Dr. Sulaiman Al Habib Medical Journal, 4(3), pp. 126–135, doi: 10.1007/s44229-022-00016-9.</mixed-citation><mixed-citation xml:lang="en">Almaghrabi, N.S, and Bugis, B.A., (2022). Patient Con¿ dentiality of Electronic Health Records: A Recent Review of the Saudi Literature. Dr. Sulaiman Al Habib Medical Journal, 4(3), pp. 126–135, doi: 10.1007/s44229-022-00016-9.</mixed-citation></citation-alternatives></ref><ref id="cit4"><label>4</label><citation-alternatives><mixed-citation xml:lang="ru">Anderson, J.M., (2003). Why We Need a New De¿ nition of Information Security. Computers &amp; Security, 22(4), pp. 308-313, doi: 10.1016/S0167-4048(03)00407-3.</mixed-citation><mixed-citation xml:lang="en">Anderson, J.M., (2003). Why We Need a New De¿ nition of Information Security. Computers &amp; Security, 22(4), pp. 308-313, doi: 10.1016/S0167-4048(03)00407-3.</mixed-citation></citation-alternatives></ref><ref id="cit5"><label>5</label><citation-alternatives><mixed-citation xml:lang="ru">Ang, A., (2022). 1.9 Million Cyberattacks against Indian Healthcare Recorded in 2022. Healthcare IT News. December 5. Available at: https://www.healthcareitnews.com/news/asia/19-million-cyberattacksagainst-indian-healthcare-recorded-2022 [Accessed 21.09.2023].</mixed-citation><mixed-citation xml:lang="en">Ang, A., (2022). 1.9 Million Cyberattacks against Indian Healthcare Recorded in 2022. Healthcare IT News. December 5. Available at: https://www.healthcareitnews.com/news/asia/19-million-cyberattacksagainst-indian-healthcare-recorded-2022 [Accessed 21.09.2023].</mixed-citation></citation-alternatives></ref><ref id="cit6"><label>6</label><citation-alternatives><mixed-citation xml:lang="ru">Angel, D., (2022). Protection of Medical Information Systems against Cyber Attacks: A Graph Theoretical Approach. Wireless Personal Communications, 126(4), pp. 3455–3464, doi: 10.1007/s11277-022-09873-x.</mixed-citation><mixed-citation xml:lang="en">Angel, D., (2022). Protection of Medical Information Systems against Cyber Attacks: A Graph Theoretical Approach. Wireless Personal Communications, 126(4), pp. 3455–3464, doi: 10.1007/s11277-022-09873-x.</mixed-citation></citation-alternatives></ref><ref id="cit7"><label>7</label><citation-alternatives><mixed-citation xml:lang="ru">Argaw, S.T., Troncoso-Pastoriza, J.R., Lacey, D., Florin, M.-V., Calcavecchia, F., Anderson, D., Burleson, W., et al., (2020). Cybersecurity of Hospitals: Discussing the Challenges and Working towards Mitigating the Risks. BMC Medical Informatics and Decision Making, 20(1), p. 146, doi: 10.1186/s12911-020-01161-7.</mixed-citation><mixed-citation xml:lang="en">Argaw, S.T., Troncoso-Pastoriza, J.R., Lacey, D., Florin, M.-V., Calcavecchia, F., Anderson, D., Burleson, W., et al., (2020). Cybersecurity of Hospitals: Discussing the Challenges and Working towards Mitigating the Risks. BMC Medical Informatics and Decision Making, 20(1), p. 146, doi: 10.1186/s12911-020-01161-7.</mixed-citation></citation-alternatives></ref><ref id="cit8"><label>8</label><citation-alternatives><mixed-citation xml:lang="ru">Bhatia, D., (2022). A Comprehensive Review on the Cyber Security Methods in Indian Organisation. International Journal of Advances in Soft Computing and Its Applications, 14(1), pp. 103–124, doi: 10.15849/IJASCA.220328.08.</mixed-citation><mixed-citation xml:lang="en">Bhatia, D., (2022). A Comprehensive Review on the Cyber Security Methods in Indian Organisation. International Journal of Advances in Soft Computing and Its Applications, 14(1), pp. 103–124, doi: 10.15849/IJASCA.220328.08.</mixed-citation></citation-alternatives></ref><ref id="cit9"><label>9</label><citation-alternatives><mixed-citation xml:lang="ru">Blessing, G., Azeta, A., Misra, S., Osamor, V.Ch., Fernandez-Sanz, L. and Pospelova, V., (2022). The Emerging Threat of Ai-Driven Cyber Attacks: A Review. Applied Arti¿ cial Intelligence, 36(1), pp. 1–34, doi: 10.1080/08839514.2022.2037254.</mixed-citation><mixed-citation xml:lang="en">Blessing, G., Azeta, A., Misra, S., Osamor, V.Ch., Fernandez-Sanz, L. and Pospelova, V., (2022). The Emerging Threat of Ai-Driven Cyber Attacks: A Review. Applied Arti¿ cial Intelligence, 36(1), pp. 1–34, doi: 10.1080/08839514.2022.2037254.</mixed-citation></citation-alternatives></ref><ref id="cit10"><label>10</label><citation-alternatives><mixed-citation xml:lang="ru">Coventry, L. and Branley, D., (2018). Cybersecurity in Healthcare: A Narrative Review of Trends, Threats and Ways Forward. Maturitas, 113, pp. 48–52, doi: 10.1016/j.maturitas.2018.04.008.</mixed-citation><mixed-citation xml:lang="en">Coventry, L. and Branley, D., (2018). Cybersecurity in Healthcare: A Narrative Review of Trends, Threats and Ways Forward. Maturitas, 113, pp. 48–52, doi: 10.1016/j.maturitas.2018.04.008.</mixed-citation></citation-alternatives></ref><ref id="cit11"><label>11</label><citation-alternatives><mixed-citation xml:lang="ru">Cox, Jr, L.A., (2008). Some Limitations of “Risk = Threat × Vulnerability × Consequence” for Risk Analysis of Terrorist Attacks. Risk Analysis, 28(6), pp. 1749–1761, doi: 10.1111/j.1539-6924.2008.01142.x.</mixed-citation><mixed-citation xml:lang="en">Cox, Jr, L.A., (2008). Some Limitations of “Risk = Threat × Vulnerability × Consequence” for Risk Analysis of Terrorist Attacks. Risk Analysis, 28(6), pp. 1749–1761, doi: 10.1111/j.1539-6924.2008.01142.x.</mixed-citation></citation-alternatives></ref><ref id="cit12"><label>12</label><citation-alternatives><mixed-citation xml:lang="ru">Cremer, F., Sheehan, B., Fortmann, M., Kia, A.N., Mullins, M., Murphy, F. and Stefan Materne, S., (2022). Cyber Risk and Cybersecurity: A Systematic Review of Data Availability. The Geneva Papers on Risk and Insurance — Issues and Practice, 47(3), pp. 698–736, doi: 10.1057/s41288-022-00266-6.</mixed-citation><mixed-citation xml:lang="en">Cremer, F., Sheehan, B., Fortmann, M., Kia, A.N., Mullins, M., Murphy, F. and Stefan Materne, S., (2022). Cyber Risk and Cybersecurity: A Systematic Review of Data Availability. The Geneva Papers on Risk and Insurance — Issues and Practice, 47(3), pp. 698–736, doi: 10.1057/s41288-022-00266-6.</mixed-citation></citation-alternatives></ref><ref id="cit13"><label>13</label><citation-alternatives><mixed-citation xml:lang="ru">Croke, L., (2020). Protecting Your Organization from E-mail Phishing and Ransomware Attacks. AORN Journal, 112(4), doi: 10.1002/aorn.13229.</mixed-citation><mixed-citation xml:lang="en">Croke, L., (2020). Protecting Your Organization from E-mail Phishing and Ransomware Attacks. AORN Journal, 112(4), doi: 10.1002/aorn.13229.</mixed-citation></citation-alternatives></ref><ref id="cit14"><label>14</label><citation-alternatives><mixed-citation xml:lang="ru">Desjardins, J., (2018). Why Hackers Hack: Motives Behind Cyberattacks. Visual Capitalist. January 3. Available at: https://www.visualcapitalist.com/hackers-hack-motives-behind-cyberattacks/#google_vignette [Accessed 21.09.2024].</mixed-citation><mixed-citation xml:lang="en">Desjardins, J., (2018). Why Hackers Hack: Motives Behind Cyberattacks. Visual Capitalist. January 3. Available at: https://www.visualcapitalist.com/hackers-hack-motives-behind-cyberattacks/#google_vignette [Accessed 21.09.2024].</mixed-citation></citation-alternatives></ref><ref id="cit15"><label>15</label><citation-alternatives><mixed-citation xml:lang="ru">Farringer, D.R., (2019). Maybe if We Turn it oɣ and then Turn it back on again? Exploring Health Care Reform as a Means to Curb Cyber Attacks. Journal of Law, Medicine &amp; Ethics, 47(S4), pp. 91–102, doi: 10.1177/1073110519898046.</mixed-citation><mixed-citation xml:lang="en">Farringer, D.R., (2019). Maybe if We Turn it oɣ and then Turn it back on again? Exploring Health Care Reform as a Means to Curb Cyber Attacks. Journal of Law, Medicine &amp; Ethics, 47(S4), pp. 91–102, doi: 10.1177/1073110519898046.</mixed-citation></citation-alternatives></ref><ref id="cit16"><label>16</label><citation-alternatives><mixed-citation xml:lang="ru">Gajwani, A., (2020). Electronic Health Records and Data Privacy Regimes in India. iPleaders. November 28. Available at: http://blog.ipleaders.in/electronic-health-records-data-privacy-regimes-india/ [Accessed 21.09.2024].</mixed-citation><mixed-citation xml:lang="en">Gajwani, A., (2020). Electronic Health Records and Data Privacy Regimes in India. iPleaders. November 28. Available at: http://blog.ipleaders.in/electronic-health-records-data-privacy-regimes-india/ [Accessed 21.09.2024].</mixed-citation></citation-alternatives></ref><ref id="cit17"><label>17</label><citation-alternatives><mixed-citation xml:lang="ru">Ganiga, R., Pai, R.M., Manohara Pai, M.M. and Sinha, R.K., (2020). Security Framework for Cloud Based Electronic Health Record (Ehr) System. International Journal of Electrical and Computer Engineering (IJECE), 10(1), pp. 455–466, doi: 10.11591/ijece.v10i1.pp455-466.</mixed-citation><mixed-citation xml:lang="en">Ganiga, R., Pai, R.M., Manohara Pai, M.M. and Sinha, R.K., (2020). Security Framework for Cloud Based Electronic Health Record (Ehr) System. International Journal of Electrical and Computer Engineering (IJECE), 10(1), pp. 455–466, doi: 10.11591/ijece.v10i1.pp455-466.</mixed-citation></citation-alternatives></ref><ref id="cit18"><label>18</label><citation-alternatives><mixed-citation xml:lang="ru">Hakak, S., Khan, W.Z., Imran, M., Choo, K-K.R. and Shoaib, M., (2020). Have You Been a Victim of Covid-19-Related Cyber Incidents? Survey, Taxonomy, and Mitigation Strategies. IEEE Access, 8, pp. 124134–124144, doi: 10.1109/ACCESS.2020.3006172.</mixed-citation><mixed-citation xml:lang="en">Hakak, S., Khan, W.Z., Imran, M., Choo, K-K.R. and Shoaib, M., (2020). Have You Been a Victim of Covid-19-Related Cyber Incidents? Survey, Taxonomy, and Mitigation Strategies. IEEE Access, 8, pp. 124134–124144, doi: 10.1109/ACCESS.2020.3006172.</mixed-citation></citation-alternatives></ref><ref id="cit19"><label>19</label><citation-alternatives><mixed-citation xml:lang="ru">Han, Ch. and Dongre, R., (2014). Q&amp;A. What Motivates Cyber-Attackers? Technology Innovation Management Review, 4(10), pp. 40–42, doi: 10.22215/timreview/838.</mixed-citation><mixed-citation xml:lang="en">Han, Ch. and Dongre, R., (2014). Q&amp;A. What Motivates Cyber-Attackers? Technology Innovation Management Review, 4(10), pp. 40–42, doi: 10.22215/timreview/838.</mixed-citation></citation-alternatives></ref><ref id="cit20"><label>20</label><citation-alternatives><mixed-citation xml:lang="ru">Hoɣ man, Sh. and Podgurski, A., (2013). The Use and Misuse of Biomedical Data: Is Bigger Really Better? Faculty Publications, January, pp. 497–538. Available at: https://scholarlycommons.law.case.edu/faculty_publications/606 [Accessed 21.09.2024].</mixed-citation><mixed-citation xml:lang="en">Hoɣ man, Sh. and Podgurski, A., (2013). The Use and Misuse of Biomedical Data: Is Bigger Really Better? Faculty Publications, January, pp. 497–538. Available at: https://scholarlycommons.law.case.edu/faculty_publications/606 [Accessed 21.09.2024].</mixed-citation></citation-alternatives></ref><ref id="cit21"><label>21</label><citation-alternatives><mixed-citation xml:lang="ru">Howden, E., (2023). Retaining and Destroying Patient Records. BDJ Team, 10(1), p. 23, doi: 10.1038/s41407-023-1712-x.</mixed-citation><mixed-citation xml:lang="en">Howden, E., (2023). Retaining and Destroying Patient Records. BDJ Team, 10(1), p. 23, doi: 10.1038/s41407-023-1712-x.</mixed-citation></citation-alternatives></ref><ref id="cit22"><label>22</label><citation-alternatives><mixed-citation xml:lang="ru">Iasiello, E., (2013). Cyber Attack: A Dull Tool to Shape Foreign Policy. 2013 5th International Conference on Cyber ConÀ ict (CYCON 2013), pp. 1–18. Available at: https://ieeexplore.ieee.org/document/6568392 [Accessed 21.09.2024].</mixed-citation><mixed-citation xml:lang="en">Iasiello, E., (2013). Cyber Attack: A Dull Tool to Shape Foreign Policy. 2013 5th International Conference on Cyber ConÀ ict (CYCON 2013), pp. 1–18. Available at: https://ieeexplore.ieee.org/document/6568392 [Accessed 21.09.2024].</mixed-citation></citation-alternatives></ref><ref id="cit23"><label>23</label><citation-alternatives><mixed-citation xml:lang="ru">Ibarra, J., Jahankhani, H. and Kendzierskyj, S., (2019). Cyber-Physical Attacks and the Value of Healthcare Data: Facing an Era of Cyber Extortion and Organised Crime. In: Jahankhani, H., Kendzierskyj, S., Jamal, A., Epiphaniou, G. and Al-Khateeb, H., eds, (2019). Blockchain and Clinical Trial: Securing Patient Data. Cham: Springer International Publishing, doi: 10.1007/978-3-030-11289-9_5.</mixed-citation><mixed-citation xml:lang="en">Ibarra, J., Jahankhani, H. and Kendzierskyj, S., (2019). Cyber-Physical Attacks and the Value of Healthcare Data: Facing an Era of Cyber Extortion and Organised Crime. In: Jahankhani, H., Kendzierskyj, S., Jamal, A., Epiphaniou, G. and Al-Khateeb, H., eds, (2019). Blockchain and Clinical Trial: Securing Patient Data. Cham: Springer International Publishing, doi: 10.1007/978-3-030-11289-9_5.</mixed-citation></citation-alternatives></ref><ref id="cit24"><label>24</label><citation-alternatives><mixed-citation xml:lang="ru">Javaid, M., Haleem, A., Singh, R.P. and Suman, R., (2023). Towards Insighting Cybersecurity for Healthcare Domains: A Comprehensive Review of Recent Practices and Trends. Cyber Security and Applications, 1, 100016, doi: 10.1016/j.csa.2023.100016.</mixed-citation><mixed-citation xml:lang="en">Javaid, M., Haleem, A., Singh, R.P. and Suman, R., (2023). Towards Insighting Cybersecurity for Healthcare Domains: A Comprehensive Review of Recent Practices and Trends. Cyber Security and Applications, 1, 100016, doi: 10.1016/j.csa.2023.100016.</mixed-citation></citation-alternatives></ref><ref id="cit25"><label>25</label><citation-alternatives><mixed-citation xml:lang="ru">Jayawardena, A.S., (2013). A Systematic Literature Review of Security, Privacy and Con¿ dentiality of Patient Information in Electronic Health Information Systems. Sri Lanka Journal of Bio-Medical Informatics, 4(2), p. 25, doi: 10.4038/sljbmi.v4i2.5740.</mixed-citation><mixed-citation xml:lang="en">Jayawardena, A.S., (2013). A Systematic Literature Review of Security, Privacy and Con¿ dentiality of Patient Information in Electronic Health Information Systems. Sri Lanka Journal of Bio-Medical Informatics, 4(2), p. 25, doi: 10.4038/sljbmi.v4i2.5740.</mixed-citation></citation-alternatives></ref><ref id="cit26"><label>26</label><citation-alternatives><mixed-citation xml:lang="ru">Kaplan, B., (2014). How Should Health Data Be Used? Privacy, Secondary Use, and Big data Sales. Yale University Institute for Social and Policy Studies Working Paper No. 14-025, Cambridge Quarterly of Healthcare Ethics, 25(2), 312–329, doi: 10.2139/ssrn.2510013.</mixed-citation><mixed-citation xml:lang="en">Kaplan, B., (2014). How Should Health Data Be Used? Privacy, Secondary Use, and Big data Sales. Yale University Institute for Social and Policy Studies Working Paper No. 14-025, Cambridge Quarterly of Healthcare Ethics, 25(2), 312–329, doi: 10.2139/ssrn.2510013.</mixed-citation></citation-alternatives></ref><ref id="cit27"><label>27</label><citation-alternatives><mixed-citation xml:lang="ru">Kaplan, B., (2020). Seeing through Health Information Technology: The Need for Transparency in Software, Algorithms, Data Privacy, and Regulation. Journal of Law and the Biosciences, 7(1), lsaa062, doi: 10.1093/jlb/lsaa062.</mixed-citation><mixed-citation xml:lang="en">Kaplan, B., (2020). Seeing through Health Information Technology: The Need for Transparency in Software, Algorithms, Data Privacy, and Regulation. Journal of Law and the Biosciences, 7(1), lsaa062, doi: 10.1093/jlb/lsaa062.</mixed-citation></citation-alternatives></ref><ref id="cit28"><label>28</label><citation-alternatives><mixed-citation xml:lang="ru">Kawu, A.A., Hederman, L., Doyle, J. and O’Sullivan, D., (2023). Patient Generated Health Data and Electronic Health Record Integration, Governance and Socio-Technical Issues: A Narrative Review. Informatics in Medicine Unlocked, 37, 101153, doi: 10.1016/j.imu.2022.101153.</mixed-citation><mixed-citation xml:lang="en">Kawu, A.A., Hederman, L., Doyle, J. and O’Sullivan, D., (2023). Patient Generated Health Data and Electronic Health Record Integration, Governance and Socio-Technical Issues: A Narrative Review. Informatics in Medicine Unlocked, 37, 101153, doi: 10.1016/j.imu.2022.101153.</mixed-citation></citation-alternatives></ref><ref id="cit29"><label>29</label><citation-alternatives><mixed-citation xml:lang="ru">Keshta, I. and Odeh, A., (2021). Security and Privacy of Electronic Health Records: Concerns and Challenges. Egyptian Informatics Journal, 22(2), pp. 177–183, doi: 10.1016/j.eij.2020.07.003.</mixed-citation><mixed-citation xml:lang="en">Keshta, I. and Odeh, A., (2021). Security and Privacy of Electronic Health Records: Concerns and Challenges. Egyptian Informatics Journal, 22(2), pp. 177–183, doi: 10.1016/j.eij.2020.07.003.</mixed-citation></citation-alternatives></ref><ref id="cit30"><label>30</label><citation-alternatives><mixed-citation xml:lang="ru">Langer, S.G., (2017). Cyber-Security Issues in Healthcare Information Technology. Journal of Digital Imaging. 30(1), pp. 117–125, doi: 10.1007/s10278-016-9913-x.</mixed-citation><mixed-citation xml:lang="en">Langer, S.G., (2017). Cyber-Security Issues in Healthcare Information Technology. Journal of Digital Imaging. 30(1), pp. 117–125, doi: 10.1007/s10278-016-9913-x.</mixed-citation></citation-alternatives></ref><ref id="cit31"><label>31</label><citation-alternatives><mixed-citation xml:lang="ru">Lekshmi, A.S., (2022). Growing Concern on Healthcare Cyberattacks &amp; Need for Cybersecurity. Preprint. Available at: https://www.researchgate.net/publication/357753537_Growing_Concern_on_Healthcare_Cyberattacks_Need_for_Cybersecurity [Accessed 21.09.2024].</mixed-citation><mixed-citation xml:lang="en">Lekshmi, A.S., (2022). Growing Concern on Healthcare Cyberattacks &amp; Need for Cybersecurity. Preprint. Available at: https://www.researchgate.net/publication/357753537_Growing_Concern_on_Healthcare_Cyberattacks_Need_for_Cybersecurity [Accessed 21.09.2024].</mixed-citation></citation-alternatives></ref><ref id="cit32"><label>32</label><citation-alternatives><mixed-citation xml:lang="ru">Martin, G., Kinross, J. and Hankin, Ch., (2017). Eɣ ective Cybersecurity Is Fundamental to Patient Safety. The British Medical Journal, 357, j2375, doi: 10.1136/bmj.j2375.</mixed-citation><mixed-citation xml:lang="en">Martin, G., Kinross, J. and Hankin, Ch., (2017). Eɣ ective Cybersecurity Is Fundamental to Patient Safety. The British Medical Journal, 357, j2375, doi: 10.1136/bmj.j2375.</mixed-citation></citation-alternatives></ref><ref id="cit33"><label>33</label><citation-alternatives><mixed-citation xml:lang="ru">Muthuppalaniappan, M. and Stevenson, K., (2021). Healthcare Cyber-Attacks and the Covid-19 Pandemic: An Urgent Threat to Global Health. International Journal for Quality in Health Care: Journal of the International Society for Quality in Health Care, 33(1), mzaa117, doi: 10.1093/intqhc/mzaa117.</mixed-citation><mixed-citation xml:lang="en">Muthuppalaniappan, M. and Stevenson, K., (2021). Healthcare Cyber-Attacks and the Covid-19 Pandemic: An Urgent Threat to Global Health. International Journal for Quality in Health Care: Journal of the International Society for Quality in Health Care, 33(1), mzaa117, doi: 10.1093/intqhc/mzaa117.</mixed-citation></citation-alternatives></ref><ref id="cit34"><label>34</label><citation-alternatives><mixed-citation xml:lang="ru">Nasiri, S., Farahnaz, S., Tadayon, M. and Dehnad, A., (2019). Security Requirements of Internet of Things-Based Healthcare System: A Survey Study. Acta Informatica Medica, 27(4), pp. 253–258, doi: 10.5455/aim.2019.27.253-258.</mixed-citation><mixed-citation xml:lang="en">Nasiri, S., Farahnaz, S., Tadayon, M. and Dehnad, A., (2019). Security Requirements of Internet of Things-Based Healthcare System: A Survey Study. Acta Informatica Medica, 27(4), pp. 253–258, doi: 10.5455/aim.2019.27.253-258.</mixed-citation></citation-alternatives></ref><ref id="cit35"><label>35</label><citation-alternatives><mixed-citation xml:lang="ru">Negro-Calduch, E., Azzopardi-Muscat, N., Krishnamurthy, R.S. and Novillo-Ortiz, D., (2021). Technological Progress in Electronic Health Record System Optimization: Systematic Review of Systematic Literature Reviews. International Journal of Medical Informatics, 152, 104507, doi: 10.1016/j.ijmedinf.2021.104507.</mixed-citation><mixed-citation xml:lang="en">Negro-Calduch, E., Azzopardi-Muscat, N., Krishnamurthy, R.S. and Novillo-Ortiz, D., (2021). Technological Progress in Electronic Health Record System Optimization: Systematic Review of Systematic Literature Reviews. International Journal of Medical Informatics, 152, 104507, doi: 10.1016/j.ijmedinf.2021.104507.</mixed-citation></citation-alternatives></ref><ref id="cit36"><label>36</label><citation-alternatives><mixed-citation xml:lang="ru">Nielsen, M., Saavedra, A., Villarreal, V., Muñoz, L. and Castillo, Y., (2019). Flexehr: Proposal of a Platform for Interoperability between Information Systems Based on Electronic Medical Records in Panama. Proceedings of the 13th International Conference on Ubiquitous Computing and Ambient Intelligence UCAmI 2019, 31(1), 5, doi: 10.3390/proceedings2019031013.</mixed-citation><mixed-citation xml:lang="en">Nielsen, M., Saavedra, A., Villarreal, V., Muñoz, L. and Castillo, Y., (2019). Flexehr: Proposal of a Platform for Interoperability between Information Systems Based on Electronic Medical Records in Panama. Proceedings of the 13th International Conference on Ubiquitous Computing and Ambient Intelligence UCAmI 2019, 31(1), 5, doi: 10.3390/proceedings2019031013.</mixed-citation></citation-alternatives></ref><ref id="cit37"><label>37</label><citation-alternatives><mixed-citation xml:lang="ru">Nusairat, T., Saudi, M.M. and Ahmad, A.B., (2023). A Recent Assessment for the Ransomware Attacks against the Internet of Medical Things (Iomt): A Review. 2023 IEEE 13th International Conference on Control System, Computing and Engineering (ICCSCE), pp. 238–242, doi: 10.1109/ICCSCE58721.2023.10237161.</mixed-citation><mixed-citation xml:lang="en">Nusairat, T., Saudi, M.M. and Ahmad, A.B., (2023). A Recent Assessment for the Ransomware Attacks against the Internet of Medical Things (Iomt): A Review. 2023 IEEE 13th International Conference on Control System, Computing and Engineering (ICCSCE), pp. 238–242, doi: 10.1109/ICCSCE58721.2023.10237161.</mixed-citation></citation-alternatives></ref><ref id="cit38"><label>38</label><citation-alternatives><mixed-citation xml:lang="ru">Pal, P., Sahana, B.C. and Poray, J., (2024). Secure electronics medical infrastructure for healthcare 4.0: a voice identity managementbased approach. Procedia Computer Science, 235, pp. 468–477, doi: 10.1016/j.procs.2024.04.046.</mixed-citation><mixed-citation xml:lang="en">Pal, P., Sahana, B.C. and Poray, J., (2024). Secure electronics medical infrastructure for healthcare 4.0: a voice identity managementbased approach. Procedia Computer Science, 235, pp. 468–477, doi: 10.1016/j.procs.2024.04.046.</mixed-citation></citation-alternatives></ref><ref id="cit39"><label>39</label><citation-alternatives><mixed-citation xml:lang="ru">Paliwal, S., Parveen, S., Singh, O., Alam, A. and Ahmed, J., (2023). The Role of Ayushman Bharat Health Account (Abha) in Telehealth: A New Frontier of Smart Healthcare Delivery in India. In: Kohei Arai, ed., (2023). Proceedings of the Future Technologies Conference (FTC). Vol. 2, pp. 388–406. Cham: Springer Nature Switzerland; doi: 10.1007/978-3-031-47451-4_28.</mixed-citation><mixed-citation xml:lang="en">Paliwal, S., Parveen, S., Singh, O., Alam, A. and Ahmed, J., (2023). The Role of Ayushman Bharat Health Account (Abha) in Telehealth: A New Frontier of Smart Healthcare Delivery in India. In: Kohei Arai, ed., (2023). Proceedings of the Future Technologies Conference (FTC). Vol. 2, pp. 388–406. Cham: Springer Nature Switzerland; doi: 10.1007/978-3-031-47451-4_28.</mixed-citation></citation-alternatives></ref><ref id="cit40"><label>40</label><citation-alternatives><mixed-citation xml:lang="ru">Pears, M. and Konstantinidis, S.T., (2021). Cybersecurity Training in the Healthcare Workforce — Utilization of the Addie Model. 2021 IEEE Global Engineering Education Conference (EDUCON), pp. 1674–1681, doi: 10.1109/EDUCON46332.2021.9454062.</mixed-citation><mixed-citation xml:lang="en">Pears, M. and Konstantinidis, S.T., (2021). Cybersecurity Training in the Healthcare Workforce — Utilization of the Addie Model. 2021 IEEE Global Engineering Education Conference (EDUCON), pp. 1674–1681, doi: 10.1109/EDUCON46332.2021.9454062.</mixed-citation></citation-alternatives></ref><ref id="cit41"><label>41</label><citation-alternatives><mixed-citation xml:lang="ru">Price, W.N., Kaminski, M.E., Minssen, T. and Spector-Bagdady, K., (2019). Shadow Health Records Meet New Data Privacy Laws. Science (New York, N. Y.), 363(6426), pp. 448–450, doi: 10.1126/science.aav5133.</mixed-citation><mixed-citation xml:lang="en">Price, W.N., Kaminski, M.E., Minssen, T. and Spector-Bagdady, K., (2019). Shadow Health Records Meet New Data Privacy Laws. Science (New York, N. Y.), 363(6426), pp. 448–450, doi: 10.1126/science.aav5133.</mixed-citation></citation-alternatives></ref><ref id="cit42"><label>42</label><citation-alternatives><mixed-citation xml:lang="ru">Rai, B.K., (2022). Blockchain-Enabled Electronic Health Records for Healthcare 4.0. International Journal of E-Health and Medical Communications (IJEHMC), 13(4), pp. 1–13, doi: 10.4018/IJEHMC.309438.</mixed-citation><mixed-citation xml:lang="en">Rai, B.K., (2022). Blockchain-Enabled Electronic Health Records for Healthcare 4.0. International Journal of E-Health and Medical Communications (IJEHMC), 13(4), pp. 1–13, doi: 10.4018/IJEHMC.309438.</mixed-citation></citation-alternatives></ref><ref id="cit43"><label>43</label><citation-alternatives><mixed-citation xml:lang="ru">Raizada, N. and Biswal, M., (2024). An evidence-based investigation of cert-in’s reporting on cyber-threats in healthcare sector. Conhecimento &amp; Diversidade, 16(42), pp. 219–246, doi: 10.18316/rcd.v16i42.11694.</mixed-citation><mixed-citation xml:lang="en">Raizada, N. and Biswal, M., (2024). An evidence-based investigation of cert-in’s reporting on cyber-threats in healthcare sector. Conhecimento &amp; Diversidade, 16(42), pp. 219–246, doi: 10.18316/rcd.v16i42.11694.</mixed-citation></citation-alternatives></ref><ref id="cit44"><label>44</label><citation-alternatives><mixed-citation xml:lang="ru">Reshmi, T.R., (2021). Information Security Breaches Due to Ransomware Attacks — a Systematic Literature Review. International Journal of Information Management Data Insights, 1(2), 100013, doi: 10.1016/j.jjimei.2021.100013.</mixed-citation><mixed-citation xml:lang="en">Reshmi, T.R., (2021). Information Security Breaches Due to Ransomware Attacks — a Systematic Literature Review. International Journal of Information Management Data Insights, 1(2), 100013, doi: 10.1016/j.jjimei.2021.100013.</mixed-citation></citation-alternatives></ref><ref id="cit45"><label>45</label><citation-alternatives><mixed-citation xml:lang="ru">Richter, J.G. and Thielscher, Ch., (2023). New Developments in Electronic Health Record Analysis. Nature Reviews Rheumatology, 19(2), pp. 74–75, doi: 10.1038/s41584-022-00894-1.</mixed-citation><mixed-citation xml:lang="en">Richter, J.G. and Thielscher, Ch., (2023). New Developments in Electronic Health Record Analysis. Nature Reviews Rheumatology, 19(2), pp. 74–75, doi: 10.1038/s41584-022-00894-1.</mixed-citation></citation-alternatives></ref><ref id="cit46"><label>46</label><citation-alternatives><mixed-citation xml:lang="ru">Sardi, A., Rizzi, A., Sorano, E. and Guerrieri, A., (2020). Cyber Risk in Health Facilities: A Systematic Literature Review. Sustainability, 12(17), 7002, doi: 10.3390/su12177002.</mixed-citation><mixed-citation xml:lang="en">Sardi, A., Rizzi, A., Sorano, E. and Guerrieri, A., (2020). Cyber Risk in Health Facilities: A Systematic Literature Review. Sustainability, 12(17), 7002, doi: 10.3390/su12177002.</mixed-citation></citation-alternatives></ref><ref id="cit47"><label>47</label><citation-alternatives><mixed-citation xml:lang="ru">Savin, V.D. and Anysz, R.N., (2021). Cybersecurity Threats and Vulnerabilities of Critical Infrastructures. American Research Journal of Humanities Social Science, 04(07), pp. 90–96. Available at: https://www.arjhss.com/wp-content/uploads/2021/07/L479096.pdf [Accessed 21.09.2024].</mixed-citation><mixed-citation xml:lang="en">Savin, V.D. and Anysz, R.N., (2021). Cybersecurity Threats and Vulnerabilities of Critical Infrastructures. American Research Journal of Humanities Social Science, 04(07), pp. 90–96. Available at: https://www.arjhss.com/wp-content/uploads/2021/07/L479096.pdf [Accessed 21.09.2024].</mixed-citation></citation-alternatives></ref><ref id="cit48"><label>48</label><citation-alternatives><mixed-citation xml:lang="ru">Sengupta, K., (2017). Isis-Linked Hackers Attack NHS Websites to Show Gruesome Syrian Civil War Images. The Independent. February 8. Available at: https://www.independent.co.uk/news/uk/crime/isis-islamist-hackers-nhs-websites-cyber-attack-syrian-civil-war-images-islamic-state-a7567236.html [Accessed 21.09.2024].</mixed-citation><mixed-citation xml:lang="en">Sengupta, K., (2017). Isis-Linked Hackers Attack NHS Websites to Show Gruesome Syrian Civil War Images. The Independent. February 8. Available at: https://www.independent.co.uk/news/uk/crime/isis-islamist-hackers-nhs-websites-cyber-attack-syrian-civil-war-images-islamic-state-a7567236.html [Accessed 21.09.2024].</mixed-citation></citation-alternatives></ref><ref id="cit49"><label>49</label><citation-alternatives><mixed-citation xml:lang="ru">Shah, Sh.M. and Khan, R.M., (2020). Secondary Use of Electronic Health Record: Opportunities and Challenges. IEEE Access, 8, pp. 136947–136965, doi: 10.1109/ACCESS.2020.3011099.</mixed-citation><mixed-citation xml:lang="en">Shah, Sh.M. and Khan, R.M., (2020). Secondary Use of Electronic Health Record: Opportunities and Challenges. IEEE Access, 8, pp. 136947–136965, doi: 10.1109/ACCESS.2020.3011099.</mixed-citation></citation-alternatives></ref><ref id="cit50"><label>50</label><citation-alternatives><mixed-citation xml:lang="ru">Škiljiü, A., (2020). Cybersecurity and Remote Working: Croatia’s (Non-)Response to Increased Cyber Threats. International Cybersecurity Law Review, 1(1), pp. 51–61, doi: 10.1365/s43439-020-00014-3.</mixed-citation><mixed-citation xml:lang="en">Škiljiü, A., (2020). Cybersecurity and Remote Working: Croatia’s (Non-)Response to Increased Cyber Threats. International Cybersecurity Law Review, 1(1), pp. 51–61, doi: 10.1365/s43439-020-00014-3.</mixed-citation></citation-alternatives></ref><ref id="cit51"><label>51</label><citation-alternatives><mixed-citation xml:lang="ru">Strupczewski, G., (2021). De¿ ning Cyber Risk. Safety Science, 135, pp. 105–143, doi: 10.1016/j.ssci.2020.105143.</mixed-citation><mixed-citation xml:lang="en">Strupczewski, G., (2021). De¿ ning Cyber Risk. Safety Science, 135, pp. 105–143, doi: 10.1016/j.ssci.2020.105143.</mixed-citation></citation-alternatives></ref><ref id="cit52"><label>52</label><citation-alternatives><mixed-citation xml:lang="ru">Sudhanshu, N., (2022). Indian Healthcare: Attack Surfaces, Personal Digital Data Protection, and Cyber Resiliency. Observer Research Foundation. December 28. Available at: https://www.orfonline.org/expert-speak/indian-healthcare-attack-surfaces-personal-digital-dataprotection-and-cyber-resiliency/ [Accessed 21.09.2024].</mixed-citation><mixed-citation xml:lang="en">Sudhanshu, N., (2022). Indian Healthcare: Attack Surfaces, Personal Digital Data Protection, and Cyber Resiliency. Observer Research Foundation. December 28. Available at: https://www.orfonline.org/expert-speak/indian-healthcare-attack-surfaces-personal-digital-dataprotection-and-cyber-resiliency/ [Accessed 21.09.2024].</mixed-citation></citation-alternatives></ref><ref id="cit53"><label>53</label><citation-alternatives><mixed-citation xml:lang="ru">Thamer, N. and Alubady, R., (2021). A Survey of Ransomware Attacks for Healthcare Systems: Risks, Challenges, Solutions and Opportunity of Research. 2021 1st Babylon International Conference on Information Technology and Science (BICITS), pp. 210–216, doi: 10.1109/BICITS51482.2021.9509877.</mixed-citation><mixed-citation xml:lang="en">Thamer, N. and Alubady, R., (2021). A Survey of Ransomware Attacks for Healthcare Systems: Risks, Challenges, Solutions and Opportunity of Research. 2021 1st Babylon International Conference on Information Technology and Science (BICITS), pp. 210–216, doi: 10.1109/BICITS51482.2021.9509877.</mixed-citation></citation-alternatives></ref><ref id="cit54"><label>54</label><citation-alternatives><mixed-citation xml:lang="ru">Tully, J., Selzer, J., Phillips, J.P., O’Connor, P. and Dameɣ , Ch., (2020). Healthcare Challenges in the Era of Cybersecurity. Health Security, 18(3), pp. 228–231, doi: 10.1089/hs.2019.0123.</mixed-citation><mixed-citation xml:lang="en">Tully, J., Selzer, J., Phillips, J.P., O’Connor, P. and Dameɣ , Ch., (2020). Healthcare Challenges in the Era of Cybersecurity. Health Security, 18(3), pp. 228–231, doi: 10.1089/hs.2019.0123.</mixed-citation></citation-alternatives></ref><ref id="cit55"><label>55</label><citation-alternatives><mixed-citation xml:lang="ru">Warkentin, M. and Orgeron, C., (2020). Using the Security Triad to Assess Blockchain Technology in Public Sector Applications. International Journal of Information Management, 52, 102090, doi: 10.1016/j.ijinfomgt.2020.102090.</mixed-citation><mixed-citation xml:lang="en">Warkentin, M. and Orgeron, C., (2020). Using the Security Triad to Assess Blockchain Technology in Public Sector Applications. International Journal of Information Management, 52, 102090, doi: 10.1016/j.ijinfomgt.2020.102090.</mixed-citation></citation-alternatives></ref><ref id="cit56"><label>56</label><citation-alternatives><mixed-citation xml:lang="ru">Yusuf, A. and Ayinde A., (2023). Cybersecurity Plan for a Healthcare Cloud-Based Solutions. Journal of Cyber Security, 4(3), pp. 185–188, doi: 10.32604/jcs.2022.035446.</mixed-citation><mixed-citation xml:lang="en">Yusuf, A. and Ayinde A., (2023). Cybersecurity Plan for a Healthcare Cloud-Based Solutions. Journal of Cyber Security, 4(3), pp. 185–188, doi: 10.32604/jcs.2022.035446.</mixed-citation></citation-alternatives></ref><ref id="cit57"><label>57</label><citation-alternatives><mixed-citation xml:lang="ru">Zahid, M., Inayat, I., Daneva, M. and Mehmood, Z., (2021). Security Risks in Cyber Physical Systems — A Systematic Mapping Study. Journal of Software: Evolution and Process, 33(9), e2346, doi: 10.1002/smr.2346.</mixed-citation><mixed-citation xml:lang="en">Zahid, M., Inayat, I., Daneva, M. and Mehmood, Z., (2021). Security Risks in Cyber Physical Systems — A Systematic Mapping Study. Journal of Software: Evolution and Process, 33(9), e2346, doi: 10.1002/smr.2346.</mixed-citation></citation-alternatives></ref><ref id="cit58"><label>58</label><citation-alternatives><mixed-citation xml:lang="ru">Zodian, M., (2024). Recourse Allocation and Capabilities Generation in Security Studies. In: Anton, S., Tutuianu, I.S., editors (2024). The Complex and Dynamic Nature of the Security Environment. Proceedings of the International Scienti¿ c Conference “Strategies XXI.” Vol. 2, pp. 19–26. Available at: https://www.academia.edu/103421710/THE_COMPLEX_AND_DYNAMIC_NATURE_OF_THE_SECURITY_ENVIRONMENT_Volume_2 [Accessed 23.03.2024].</mixed-citation><mixed-citation xml:lang="en">Zodian, M., (2024). Recourse Allocation and Capabilities Generation in Security Studies. In: Anton, S., Tutuianu, I.S., editors (2024). The Complex and Dynamic Nature of the Security Environment. Proceedings of the International Scienti¿ c Conference “Strategies XXI.” Vol. 2, pp. 19–26. Available at: https://www.academia.edu/103421710/THE_COMPLEX_AND_DYNAMIC_NATURE_OF_THE_SECURITY_ENVIRONMENT_Volume_2 [Accessed 23.03.2024].</mixed-citation></citation-alternatives></ref></ref-list><fn-group><fn fn-type="conflict"><p>The authors declare that there are no conflicts of interest present.</p></fn></fn-group></back></article>
