Background: The healthcare sector has increasingly integrated digital technologies, enhancing service delivery but also exposing sensitive data to cyber threats. The COVID-19 pandemic has accelerated this digital transformation, making cybersecurity a critical concern, particularly in protecting patient information.

Methods: This systematic review analyzes existing literature on cybersecurity challenges in health information management, focusing on the human factors contributing to vulnerabilities. A comprehensive search was conducted across three databases: Web of Science, CINAHL, and PubMed, employing eight distinct search queries. A total of 70 relevant studies were selected for analysis.

Results: The findings highlight three primary types of cyber threats in healthcare: attacks that exploit IT infrastructure vulnerabilities, ransomware incidents, and threats arising from human error and social engineering. Notably, the majority of data breaches stem from employee negligence rather than external hacking. The review emphasizes the importance of training and awareness programs to bolster cybersecurity defenses among healthcare professionals.

Conclusion: Effective cybersecurity in healthcare requires a dual approach: implementing technological solutions alongside comprehensive training programs that address human behavior. Raising awareness of cyber threats and improving organizational practices are essential for enhancing the resilience of healthcare systems against cyberattacks. Future research should focus on developing standard methodologies for cybersecurity training and awareness in the healthcare sector.