Siemens (NYSE:SI) is looking to update a select number of its positron emission tomography scanners to deal with cybersecurity vulnerabilities that could allow the equipment to be hacked.
The systems, which run on Microsoft (NSDQ:MSFT) Windows 7, could possibly be exploited remotely by “an attacker with a low skill,” according to a US Dept. of Homeland Security notice released last week.
The severity of the vulnerability was given a 9.8 out of 10 rating using an open industry Common Vulnerability Score System.
The company initially notified hospitals and customers with the systems to disconnect them until an update could be released to fix the vulnerability, but said today that disconnection was no longer necessary.
Siemens said it has currently found no evidence that an attack has occurred on any of the identified scanners.
“Based on the existing controls of the devices and use conditions, we believe the vulnerabilities do not result in any elevated patient risk. To date, there have been no reports of exploitation of the identified vulnerabilities on any system installation worldwide,” Siemens said.
Large imaging machines, such as PET scanners, are not generally directly connected to the internet, but are connected to local IT systems, leaving a path for infection despite their lack of direct connection.
In June, Siemens Healthineers division said it won FDA clearance for its Magnetom Vida 3 Tesla magnetic resonance imaging system.
Material from Reuters was used in this report