Medical Device Security News and Resources for Healthcare - Page 4

FDA Recalls Medtronic Insulin Pump Controller, Cites Cybersecurity Risks

October 08, 2021 by Jill McKeon

The US Food and Drug Administration (FDA) issued a Class I recall on all Medtronic MiniMed remote controllers used with the Medtronic MiniMed 508 insulin pump or the MinMed Paradigm family of insulin...

FDA’s Best Practices on Communicating Medical Device Vulnerabilities

October 08, 2021 by Jill McKeon

The US Food and Drug Administration’s (FDA) Center for Devices and Radiological Health recently released best practices for communicating medical device vulnerabilities to patients and caregivers...

FTC: Health Apps Must Comply with Health Breach Notification Rule

September 21, 2021 by Jill McKeon

The Federal Trade Commission (FTC) issued a policy statement emphasizing that health apps and connected device companies must comply with the Health Breach Notification Rule. The rule requires vendors...

61M Fitbit, Apple Users Had Data Exposed in Wearable Device Data Breach

September 16, 2021 by Jill McKeon

Over 61 million fitness tracker records from both Apple and Fitbit were exposed online in a recent wearable device data breach, according to a report from WebsitePlanet and independent cybersecurity...

University of Minnesota Unveils Center for Medical Device Cybersecurity

September 13, 2021 by Jill McKeon

The University of Minnesota announced the new Center for Medical Device Cybersecurity (CMCDC), spearheaded by funding from leading medical device manufacturers including Smiths Medical, Optum, Boston...

Infusion Pump Vulnerabilities Point to Gaps in Medical Device Security

August 27, 2021 by Jill McKeon

Vulnerabilities in two types of B. Braun infusion pumps could allow hackers to deliver double doses of medications to unsuspecting patients, exposing significant challenges to medical device...

Cybersecurity, Vulnerabilities Not Priorities for Most Hospitals

August 12, 2021 by Jill McKeon

Most hospital IT teams say that cybersecurity is not a high investment priority, despite a growing number of cyberattacks in the healthcare industry, according to a report conducted in by CyberMDX in...

FDA Outlines Medical Device Cybersecurity Goals

June 16, 2021 by Jill McKeon

In response to the National Institute of Standards and Technology’s (NIST) workshop and call for position papers to aid them in delivering on President Biden’s cybersecurity executive...

Medical Device Security, Mitigation Needs to Reduce Patient Safety Risk

June 07, 2021 by Oracle Cerner

Medical device security is consistently ranked as the top cybersecurity challenge facing health IT. Those challenges have rapidly increased in the last year with the ongoing pandemic response, as...

NIST IoT Guidance for Network-Based Attacks, Device Communication

May 27, 2021 by Jessica Davis

NIST unveiled guidance for small-sized enterprise networks and home users designed to mitigate network-based attacks using a standards-based approach to network communication...

Report: Healthcare IoT, Devices Most Impacted by TCP/IP Vulnerabilities

May 06, 2021 by Jessica Davis

At least 75 percent of healthcare entities are impacted by a host of TCP/IP vulnerabilities, uncovered by Forescout Research Labs within the last year. NUMBER:JACK, NAME:WRECK, and AMNESIA:33 are found...

DNS Flaws in Millions of IoT Devices Pose Remote Attack, Exfiltration Risk

April 13, 2021 by Jessica Davis

A group of nine DNS vulnerabilities in four popular TCP/IP stacks used in more than 100 million enterprise, consumer, and industrial IoT devices pose a critical risk of hacking or remote code execution...

How to Mitigate COVID-19’s Impact on Device Security and Patient Safety

February 26, 2021 by Jessica Davis

It’s been long established that the healthcare threat landscape, in terms of its prime targeted nature and the vast number of connected supply chain vendors and medical devices, poses an equal amount of risk and network security...

CISA Warns More Critical Flaws Found in Open Source TCP/IP Stacks

February 16, 2021 by Jessica Davis

The Department of Homeland Security Cybersecurity and Infrastructure Security Agency released an alert, which details further critical vulnerabilities found in a range of open source TCP/IP stacks,...

FDA Names First Acting Director of Medical Device Cybersecurity

February 04, 2021 by Jessica Davis

The Food and Drug Administration recently named Kevin Fu as the agency’s first Acting Director of Medical Device Cybersecurity in its Center for Devices and Radiological Health. Fu is an...

Top Health IT Security Challenges? Medical Devices, Cloud Security

January 14, 2021 by Jessica Davis

Cloud security and connected medical device security are the biggest IT challenges healthcare entities are facing under the current landscape, according to 46 percent of IT leaders surveyed...

DHS CISA Alerts to MedTronic MyCareLink Medical Device Flaws

December 14, 2020 by Jessica Davis

The Department of Homeland Security Cybersecurity and Infrastructure Security Agency released an alert, warning healthcare organizations of serious vulnerabilities found in certain MedTronic MyCareLink...

Flaws in GE Radiology Medical Device Authentication Pose Patient Data Risk

December 09, 2020 by Jessica Davis

The Department of Homeland Security Cybersecurity and Infrastructure Security Agency is warning all hospitals and other healthcare delivery organizations of an authentication flaw found in...

33 TCP/IP Stack Flaws Pose Hacking Risk to Millions of IT, IoT Devices

December 08, 2020 by Jessica Davis

A new Forescout Research Labs report disclosed a set of 33 vulnerabilities found in four open source TCP/IP stacks, foundational elements of millions of IT and IoT devices, including those in...

BD Discloses Alaris Medical Device Vulnerability, Poses DoS Attack Risk

November 13, 2020 by Jessica Davis

The Department of Homeland Security Cybersecurity and Infrastructure Agency released an alert urging organizations to apply mitigations provided by BD to close a vulnerability found in its Alaris...