The FDA’s first medical device cybersecurity chief says he will work across private and public lines to lower the threat of cyberattacks against medical devices and the healthcare systems and patients who use them. Medical device manufacturers can expect a new FDA cybersecurity draft guidance for new medical devices sometime this year, according to the […]
Cybersecurity
FDA names first medtech cybersecurity chief
University of Michigan computer science researcher Kevin Fu has been named acting director of medical device cybersecurity at the FDA. Fu began working in the newly created 12-month post on Jan. 1, 2021, according to the university. His assignment is to bridge the gap between medicine and computer science and help manufacturers protect medical devices from digital […]
Philips launches its integrated Cybersecurity Services
Royal Philips (NYSE:PHG) announced today that it launched the Philips Cybersecurity Services for enhancing security for its customers. The Philips Cybersecurity Services are an end-to-end suite of technologies and services designed for safeguarding customers’ medical systems, devices and related software solutions, regardless of their manufacturer, according to a news release. Amsterdam-based Philips’ suite of technologies will […]
Feds flag BD’s Alaris pumps for cybersecurity issues
Becton Dickinson (NYSE:BDX) last week issued a notice to warn on potential vulnerabilities with its Alaris infusion pumps. The notification applies to BD’s Alaris PC unit, model 8015, versions 9.33.1 and earlier, as well as the Alaris systems manager, versions 4.33 and earlier, according to a news release. BD was made aware of a network session […]
The top 5 MassDevice stories of the week — September 18, 2020
The past week in medtech saw a major IPO and a grim reminder about the importance of cybersecurity. Want to hear more about the week’s top news? Executive editor Chris Newmarker and Tom Salemi will discuss the week’s “Newmarker’s Newsmakers” during our DeviceTalks Weekly podcast. Without further ado, here’s this week’s MassDevice Top Five: 5. […]
A hospital ransomware attack may have caused a death in Germany
State authorities in North Rhine-Westphalia are investigating whether a hospital ransomware attack resulted in negligent homicide, according to a report by the German public broadcaster DW. Media reports say this may be the first time that a hospital cyberattack has caused a death, even if it was indirectly. Düsseldorf University Clinic had to redirect a […]
MedCrypt acquires MedISAO in medtech cybersecurity deal
Healthcare cybersecurity company MedCrypt (San Diego) today announced the acquisition of Irvine, Calif.-based MedISAO, a cybersecurity information-sharing organization that works with the medical device industry. MedCrypt is now offering MedISAO’s information-sharing analysis network for small and midsize business as well as its Cyber Protek software bill of materials (SBoM) and dependency vulnerability management tool. MedISAO’s founder, Daniel […]
B,. Braun, Baxter, CareStream, Green Hills affected by Ripple20 cyber vulnerabilities
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) said it is aware of vulnerabilities affecting Treck IP stack implications for embedded systems. Known as Ripple20, the vulnerabilities allow a remote attacker to exploit and take control of an affected system, according to the CISA statement. Among the affected companies were B. Braun, Baxter (NYSE:BAX), Green Hills […]
COVID-19 is an opportunity for cybercriminals to hack medical devices
Interpol is warning that cybercriminals are targeting hospitals and other institutions on the front lines of the coronavirus pandemic. The international agency’s Cybercrime Threat Response team at its Cyber Fusion Centre has detected a significant increase in attempted ransomware attacks against key organizations and infrastructure engaged in the virus response. The ransomware attacks involve preventing […]
Homeland Security warns on BD Pyxis Medstation and Pyxis Anesthesia
The U.S. Dept. of Homeland Security (DHS) issued a medical advisory warning for a potential software vulnerability in the Pyxis MedStation and Pyxis Anesthesia (PAS) ES system made by Becton Dickinson (NYSE:BDX). According to the DHS warning, Becton Dickinson reported the vulnerability to the Cybersecurity and Infrastructure Security Agency (CISA). Affected models of the drug-dispensing devices […]
DHS warns on Insulet Omnipod
The U.S. Dept. of Homeland Security (DHS) issued a medical advisory to warn of vulnerabilities with the Insulet (NSDQ:PODD) Omnipod insulin management system. According to the advisory, the affected insulin pumps are designed to communicate using a wireless RF with Insulet’s personal diabetes manager device, but the RF communication protocol does not properly implement authentication or […]