Data Driven Exploration of Healthcare Data Breaches Using Visual Analytics for Identifying Vulnerabilities and Strengthening Patient Information Security

In recent years, cyberattacks on businesses across healthcare, finance, and industrial sectors have risen sharply. Thehealthcare industry, in particular, has become a major target due to weak security, outdated practices and the high valueof sensitive data such as medical records and login credentials. This study examines the prevalence and features of databreaches in healthcare provider environments, with an emphasis on patient data. The research employs visual analytics andadvanced data visualization tools to explore patterns and trends in healthcare data breaches, enabling a clear understandingof how breaches are distributed across states and the healthcare ecosystem. By examining the geographic distribution ofbreaches, the study identifies not only which states experience the highest number of breaches but also which regions exhibitthe highest breaches per capita, highlighting areas of disproportionate risk. The study also categorizes breaches by typeand cause, including Hacking/IT Incidents, Unauthorized Access/Disclosure, Theft, Loss, and Improper Disposal. Amongthese, Hacking/IT Incidents are the most prevalent, affecting the largest number of individuals. In addition, breaches mostfrequently occur in network servers, followed by other critical locations such as email systems, electronic health records (EHRs),and portable devices. This indicates that centralized digital infrastructure is the primary target of cyberattacks, while otherareas remain vulnerable due to human error or physical security weaknesses. Despite these recommendations, the resultsindicate a continuing upward trend in the probability of data breaches, driven by increasing digitalization of healthcare data,growing sophistication of cyberattacks, and expanding healthcare networks. The results underscore the need for ongoingvigilance, investment in cybersecurity infrastructure, and adaptive strategies to protect patient data while maintaining operational continuity.