IJCOPE Journal

UGC Logo DOI / ISO Logo

International Journal of Creative and Open Research in Engineering and Management

A Peer-Reviewed, Open-Access International Journal Supporting Multidisciplinary Research, Digital Publishing Standards, DOI Registration, and Academic Indexing.
Journal Information
ISSN: 3108-1754 (Online)
Crossref DOI: Available
ISO Certification: 9001:2015
Publication Fee: 599/- INR
Compliance: UGC Journal Norms
License: CC BY 4.0
Peer Review: Double Blind
Volume 02, Issue 05

Published on: May 2026

SECURING THE CLINICAL BRAIN: ADDRESSING KNOWLEDGE BASE ATTACKS AND AGENCY RISKS IN HEALTHCARE AI AGENTS.

Agnibha Dutta

DOI:https://doi.org/10.55041/ijcope.v2i5.405

Article Status

Plagiarism Passed Peer Reviewed Open Access

Available Documents

Download PDF Review Report

Abstract

The increasing integration of autonomous AI agents into sensitive sectors like healthcare presents significant,emerging cybersecurity threats that demand immediate attention.The core of this risk lies not in simple prompt manipulation but in the AI’s independent decision-making capabilities and its ability to interact with external apis.

We've examined two dangerous vulnerabilities which are Knowledge Base Hijacking and the problem of Excessive Agency (OWASP LLM06:2025). Through targeted red teaming of prototype Healthcare Cognitive Medical Assistant (HCMA) agents, we've demonstrated that any attacker can easily force an agent to:

Breaking Core Guardrails: The agent may be manipulated to respond to non-medical, external queries, thereby undermining the professional context of autonomous AI agents.

Leak Sensitive Data: As a result, the agent may be deceived into disclosing internal system protocols and potentially exfiltrating sensitive patient information (PHI), leading to significant HIPAA and GDPR non-compliance incidents.

System failures happen because the autonomous AI agents are given too many permissions while they perform their tasks. Transition toward the Principle of Least Privilege (PoLP) and Sandboxed Execution is suggested to solve this problem. It has been observed that Human-in-the-Loop (HITL) or medical professional validation is required for any choice that changes the system because this ensures that patient safety is protected and data integrity is never lost by an autonomous decision.

How to Cite this Paper

Dutta, A. (2026). Securing the Clinical Brain: Addressing Knowledge Base Attacks and Agency Risks in Healthcare AI Agents.. International Journal of Creative and Open Research in Engineering and Management, <i>02</i>(05). https://doi.org/10.55041/ijcope.v2i5.405

Dutta, Agnibha. "Securing the Clinical Brain: Addressing Knowledge Base Attacks and Agency Risks in Healthcare AI Agents.." International Journal of Creative and Open Research in Engineering and Management, vol. 02, no. 05, 2026, pp. . doi:https://doi.org/10.55041/ijcope.v2i5.405.

Dutta, Agnibha. "Securing the Clinical Brain: Addressing Knowledge Base Attacks and Agency Risks in Healthcare AI Agents.." International Journal of Creative and Open Research in Engineering and Management 02, no. 05 (2026). https://doi.org/https://doi.org/10.55041/ijcope.v2i5.405.

Search & Index

Google Scholar Crossref DOI ResearchGate

References

Ethical Compliance & Review Process

  • All submissions are screened under plagiarism detection.
  • Review follows editorial policy.
  • Authors retain copyright.
  • Peer Review Type: Double-Blind Peer Review
  • Published on: May 13 2026
CCBYNC

This article is licensed under a Creative Commons Attribution-NonCommercial 4.0 International License. You are free to share and adapt this work for non-commercial purposes with proper attribution.

View License
Back to Volume 02, Issue 05View All Issues Next Article

← Previous Article

Scheme Villa: A Zone-Based B2B Supply Chain Management Platform

Next Article →

Self-Compacting Concrete with Supplementary Cementitious Materials: A Comprehensive Review of Fresh Properties, Mechanical Performance, Durability, and Sustainability
Scroll to Top