AI agents bring efficiency and new cyber risks to healthcare

By -
Hospitals are adopting AI agents to ease administrative strain, but their integration is opening new doors for cyberattacks.



What happened

Healthcare facilities across the United States are deploying AI agents to manage tasks like scheduling, billing, diagnostics support, and patient communication. While these tools help streamline operations in understaffed environments, they also introduce new vulnerabilities, particularly when connected to sensitive systems via frameworks like Model Context Protocol (MCP).

Security researchers and industry experts now warn that AI agents, when improperly secured, can be exploited by attackers to gain access to medical records, staff calendars, internal emails, and even financial systems. In some cases, attackers can manipulate agents through engineered prompts without ever breaching traditional firewalls.

 

Going deeper

AI agents are distinct from general-purpose AI tools. They’re configured with a specific objective, equipped with a ‘brain’ powered by a language model, and have access to digital tools or platforms needed to perform that objective. In a healthcare context, this can include scheduling patient visits, flagging clinical errors, or interfacing with insurance providers.

Agents powered by MCP frameworks can span systems from patient databases to building infrastructure, providing operational convenience but creating cyber risk through interconnected exposure. A compromised agent can autonomously interact with multiple systems at once, often without immediate detection.

The broader risk lies in how these agents communicate. If adversaries exploit MCP’s integration channels, a malicious command can be passed along to multiple agents or systems rapidly, much like a bloodstream spreading toxins. Unlike traditional malware, which might need to escalate access levels, a hacked AI agent already holds operational permissions.

 

What was said

Cybersecurity professionals recommend pre-integration audits, where agents are tested for vulnerabilities using red teaming techniques and prompt-based simulations. Multi-layered defenses, including encryption, access controls, and network segmentation, are also advised, along with ongoing monitoring.

Security teams are encouraged to treat agentic systems as dynamic risk factors that require continual evaluation. In particular, the principle of “least privilege” should guide how agents are granted access to internal systems.

 

FAQs

What makes AI agents different from standard AI tools in healthcare?

Unlike passive AI tools, agents can independently take action by accessing software tools and datasets to fulfill assigned objectives like scheduling, referrals, or billing support without human input.

 

Why is Model Context Protocol (MCP) a cybersecurity concern?

MCP enables streamlined cross-platform access, but this interconnectivity can be exploited by attackers to move malicious commands or data across systems quickly and undetected.

 

How can attackers manipulate AI agents without hacking the full network?

Through prompt engineering, carefully crafted inputs that trick agents into performing harmful actions, they can bypass conventional security layers and execute tasks using the agent’s own permissions.

 

What is red teaming in the context of AI security?

Red teaming involves simulating attacks on AI systems using adversarial prompts, misuses, and exploits to identify vulnerabilities before real-world attackers can take advantage.

Source: https://www.paubox.com/blog/ai-agents-bring-efficiency-and-new-cyber-risks-to-healthcare

Comments

Post a Comment

Pages

Archive

Show more

Popular posts from this blog

Top 10 Pharmaceutical Companies by Revenue in 2025

By -
Image
Here are the top 10 pharmaceutical companies by revenue as of 2025, primarily based on first quarter 2025 revenue data. Only one of the top 10 drugmakers, Eli Lilly, is expected to achieve a double-digit revenue increase by the end of 2025. Eli Lilly is projecting a robust growth of around 32% in 2025 compared to 2024, driven by strong sales of its diabetes and weight-loss drugs such as Mounjaro and Zepbound, with full-year revenue guidance between $58 billion and $61 billion ( 1 ,  2 ,  3 ). In contrast, most of the other top 10 pharmaceutical companies are expected to see more moderate revenue growth, generally in the range of 6% to 9% by the end of 2025. This reflects steady but less dramatic expansion compared to Eli Lilly’s exceptional performance ( 4 ). While earnings and revenue reports are considered lagging indicators that reflect past performance, the following articles offer a more forward-looking perspective, highlighting the potential future performance of related...
Read more

Top Bitcoin ETFs to Watch in 2025: Dominating Holdings, Low Fees, and Performance Insights

By -
Image
As of 2025, the Bitcoin ETF landscape is dominated by a mix of spot Bitcoin ETFs offering direct exposure to the cryptocurrency and Bitcoin futures strategy ETFs that provide exposure through futures contracts. The top Bitcoin ETFs expected to dominate based on holdings and fees reflect a balance between large assets under management (AUM), competitive expense ratios, and investor preferences for spot versus futures exposure. Among spot Bitcoin ETFs, which provide direct Bitcoin price exposure, the leaders by holdings and low fees include: iShares Bitcoin Trust (IBIT), Spot Bitcoin ETF from BlackRock is the largest spot Bitcoin ETF with approximately $79.66 billion in assets and a low expense ratio of 0.25%. Its large AUM and institutional backing position it as the dominant player in the spot Bitcoin ETF market.  Fidelity Wise Origin Bitcoin Fund (FBTC), with around $22.25 billion in holdings and a 0.25% fee, appealing to traditional investors seeking direct Bitcoin exposure. Gray...
Read more

Did Steve Jobs Refuse Treatment for Pancreatic Cancer?

By Editorial Team -
Image
It’s been more than 12 years since the passing of Steve Jobs. Legendary Apple Inc., Co-founder Steve Jobs passed away at only 56 years old after battling pancreatic neuroendocrine tumor, a rare form of pancreatic cancer. A growing list of people in the public spotlight have faced pancreatic cancer, including tech innovators, entrepreneurs and influencers. In addition, and connected to Jobs, Jef Raskin, developer of the Macintosh computer, passed away of pancreatic cancer in 2005. And, coincidentally, Dag Kittlaus, creator of Siri, which was acquired by Apple in 2010, was diagnosed with the same exact cancer that took the life of Jobs. Pancreatic neuroendocrine tumors (or PNETs) account for less than 10% of all pancreatic cancer tumors and tend to grow slower than exocrine tumors, the most common type of pancreas tumors. Jobs survived eight years before dying of the disease on Oct. 5, 2011. The five-year survival rate for pancreatic cancer is only 10%. Since PNETs are so uncommon, trea...
Read more

Top 10 Healthcare Companies by Revenue in 2025

By -
Image
Here are the top 10 healthcare companies by revenue as of 2024-2025, primarily based on trailing twelve-month (TTM) and fiscal year 2024 revenue data from multiple sources: 1. UnitedHealth Group Inc. Revenue: Approximately $400 billion Description: A leading health insurance company providing data analytics, consulting, and pharmacy care services. Market Capitalisation: $275.8 billion (as of July 2025) Market: NYSE, USA ( 1 ,  2 ,  4 ) 2. CVS Health Corp. Revenue: Around $361 billion to $373 billion Description: A major pharmacy benefits manager and health services provider. Market Capitalisation: $81.9 billion (as of July 2025) Market: NYSE, USA ( 1 ,  2 ,  4 ) 3. McKesson Corp. Revenue: About $309 billion to $359 billion Description: A global pharmaceutical distribution and healthcare services company. Market: NYSE, USA ( 1 ,  2 ,  4 ) 4. Cencora (formerly AmerisourceBergen) Revenue: Approximately $294 billion to $310 billion Description: A pharmaceutical...
Read more

Top 10 Food Companies by Revenue (2025)

By -
Image
Based on the most recent 2025 revenue data, here is the top 10 food companies ranked by revenue: Top 10 Food Companies by Revenue (2025) 1. Nestlé (Switzerland) Revenue:  $101.54 billion Key Brands: Nescafe, KitKat, Maggi, Purina, Waters Notes:  World's largest food company, with a diverse portfolio including bottled water, coffee, frozen foods, and nutrition products. Nestlé Health Science (NHSc), a subsidiary of Nestlé, owns a variety of supplement brands. Some of the most notable ones include: Garden of Life, Vital Proteins, Pure Encapsulations, Wobenzym, Douglas Laboratories, Persona Nutrition, Genestra, Orthica, Minami, AOV, Klean Athlete, Nature's Bounty, Solgar, Osteo Bi-Flex, and Sundown. 2. Ahold Delhaize  (Netherlands) Revenue:  $96.22 billion Notes: Major global food retailer and distributor. 3. PepsiCo (USA) Revenue: $91.52 billion Key Brands: Pepsi, Lay's, Gatorade, Tropic...
Read more

Top 10 Credit Cards for Hospital Bills in Singapore 2025

By Editorial Team -
Image
If you are looking for the best credit cards for hospital bills in Singapore , you've come to the right place. Whether you're dealing with big doctors' bills right now or regularly spend on your health, you may be interested in a credit card that offers rewards for medical spend. Most credit cards actively exclude hospital spend from earning rewards. So, to make things easier, the experts from Value Champion have scoured the terms & conditions of 100+ cards in Singapore to find which actually do provide cash rebates or miles. Earning Rewards on Hospital Bills & Why We Selected these Cards Medical bills, whether for a doctor or a hospital visit, can be quite expensive and are sometimes difficult to pay off all at once. Facing such a large bill can certainly be daunting, but doing so also presents the opportunity to earn significant cashback or miles (the greater the spend, the greater the return). Additionally, some credit cards offer 0% interest instalment plans wh...
Read more

Glutathione vs NAD: What's the Difference?

By Editorial Team -
Image
What's the difference between glutathione and NAD? We will cover the essentials and explain about each of these nutrients below.  What is Glutathione? Glutathione or GSH (tripeptide of glutamic acid, cysteine, and glycine) is referred to as the body’s “master antioxidant” or the “mother of all antioxidants” because it is your body’s primary and most prevalent protector, found in all mammalian tissue. Types of Glutathione There is a lot of confusion about GSH and what makes an effective glutathione supplement. There are different types, different formulas, and a lot of different companies saying different things. L-Glutathione or Reduced Glutathione because it is the most commonly found, least expensive, and the true core behind other forms you will find. There is some debate whether L-Glutathione alone can be effective taken orally. The theory being the enzymes in your stomach break it down before it can ever reach the blood stream and become useful. Some  evidence ...
Read more

5 Top Silver ETFs 2025: What You Need to Know

By -
Image
Along with gold, silver is in high demand as precious metals are highly sought after as safe havens in uncertain economic environments, boosting prices and assets for top silver ETFs like the iShares Silver Trust (SLV). Investors use silver ETFs for various purposes. Other than its safe-haven benefits, some invest for speculative reasons, hoping to profit from potential increases in silver prices or as a hedge against geopolitical turmoil or currency devaluation. Keep reading to learn more about investing in silver and see a list of top ETFs investing in the precious metal.   What Are Silver ETFs?  Silver ETFs are exchange-traded funds that provide exposure to the price of silver, a precious metal. These ETFs are designed to track the performance of silver prices, making it easier for investors to gain exposure to the silver market without physically owning and storing the metal itself. Silver's unique combination of properties, including its electrical conductivity, thermal c...
Read more

Top 10 Drugs Losing US Exclusivity in 2025

By -
Image
Summary 1. Stelara: 2024 U.S. sales: $6.72 billion 2. Eylea: 2024 U.S. sales: $4.77 billion 3. Prolia/Xgeva: 2024 U.S. sales: $4.39 billion 4. Entresto: 2024 U.S. sales: $4.05 billion 5. Soliris: 2024 U.S. sales: $1.52 billion 6. Promacta: 2024 U.S. sales: $1.18 billion 7. Simponi/Simponi Aria: 2024 U.S. sales: $1.08 billion 8. Tysabri: 2024 U.S. sales: $920 million 9. Tasigna: 2024 U.S. sales: $848 million 10. Brilinta: 2024 U.S. sales: $751 million Introduction While the pharmaceutical industry routinely faces high-profile losses of exclusivity each year, this year's list is particularly notable. Johnson & Johnson’s Stelara is already contending with several biosimilars, with more expected throughout the year. With $6.72 billion in U.S. sales projected for 2024, Stelara represents the largest U.S. loss of exclusivity since AbbVie’s Humira patent cliff in early 2023. Although Johnson & Johnson had anticipated a “late 2023” patent expiration, the company extended Stelara’s ...
Read more

10 Best E Wallets in Malaysia 2025

By Editorial Team -
Image
An e-wallet or a digital wallet is a feature within an app that allows transactions to be made via a smartphone. Similar to a traditional 'wallet', the e-wallet stores digital cash instead of physical cash. The prominence of e-wallets in Malaysia has grown significantly in the past few years, with its huge growth mainly driven by the government’s efforts and active marketing efforts by various companies. Credit: CompareHero.my Let’s check out the popular eWallets in Malaysia now with their payment method, top up method and other features as below: 1) E Wallet Touch 'n GO Malaysia Courtesy of tngdigital.com.my TouchnGO eWallet is owned by TNG Digital Sdn Bhd, It’s an all in one e-wallet service covering all existing and future Touch ‘n Go products & services, with the Slogan “Shaping the future of e-payments for Malaysians”. Payment Method : QR Code Transfer to Friends : Yes, with Phone Number Top Up Method : FPX, Credit or Debit Card, Reload Pin, or Auto Reload Merchant...
Read more