Alerts Archives - Page 2 of 4

RansomHub, a ransomware-as-a-service (RaaS) variant, remains at-large targeting at least 210 victims across multiple critical infrastructure sectors, including healthcare and public health organizations, since February 2024.

Read More →

Alerts

October 4, 2024

BPL Medical Technologies PWS-01-BT and BPL Be Well Android Application

Successful exploitation of this vulnerability could allow an attacker to intercept and modify information as it being processed

Read More →

Alerts

September 10, 2024

Baxter Connex Health Portal

exploitation of these vulnerabilities could lead to malicious code injection, shutdown of database service, or alteration of sensitive data

Read More →

Alerts, Cybersecurity, Medical Devices

Health Canada Recall – Baxter Spectrum Wireless Battery Modules

Baxter is releasing a WBM software update that addresses a condition where Spectrum WBM may fail to auto-document infusion status information back to hospital’s electronic medical record (EMR) system

Read More →

Alerts, Cybersecurity, Medical Devices

Philips Vue PACS

Exploitation of these vulnerabilities could allow an unauthorized person or process to eavesdrop, view or modify data, gain system access, perform code execution, install unauthorized software, or affect system data integrity to negatively impact system confidentiality, integrity, or availability.

Read More →

Alerts, Cybersecurity, Medical Devices

US Government releases new advisory for phishing attacks in healthcare

The FBI and the US Department of Health and Human Services (HHS) have released a joint statement to distribute information on known indicators of compromise (IOC) and tactics, techniques, and procedures (TTP) used in phishing and social engineering campaigns targeting healthcare.

Read More →

Alerts, Cybersecurity, Medical Devices

June 27, 2024

MicroDicom DICOM Viewer

MicroDicom viewer vulnerability could disclose sensitive information and allow code execution.

Read More →

Alerts, Cybersecurity, Medical Devices

June 7, 2024

Baxter Welch-Allyn Configuration Tool Vulnerability

Successful exploitation of this vulnerability could lead to the unintended exposure of credentials to unauthorized users.

Read More →

Alerts, Cybersecurity, Medical Devices

June 7, 2024

Baxter Welch-Allyn Connex Spot Monitor Vulnerability

Successful exploitation of this vulnerability could modify device configuration and firmware data leading to device compromise.

Read More →

Alerts, Cybersecurity, Medical Devices

Critical Cybersecurity Flaws Found in GE HealthCare Ultrasound Systems

Nozomi Networks Labs found 11 critical vulnerabilities in GE HealthCare’s Vivid Ultrasound systems, risking ransomware and patient data breaches. Exploitation requires physical access. Affected systems include Vivid T9, Common Service Desktop, and EchoPAC software. GE HealthCare has released patches and mitigation strategies. Read the full blog post for details.

Read More →

Alerts, Cybersecurity, Medical Devices

May 17, 2024

Black Basta Ransomware Alert – Healthcare as a target

Black Basta ransomware targeting healthcare organizations. Warning issued by CISA, FBI, and HHS but no Canadian guidance.

Read More →

Alerts

August 15, 2024

Santesoft Sante FFT Imaging

Santesoft Sante FFT Imaging Successful exploitation of this vulnerability could allow a local attacker to execute arbitrary code once a user opens a malicious DCM file on affected FFT Imaging installations.

Read More →