Medical Devices Archives

Commentary, Cybersecurity, Medical Devices

The CIA Triad – Differing Perspectives in Healthcare

The CIA triad is foundational to cybersecurity however it’s use and focus will vary depending on the perspective taken. We’ll discuss the basics of the CIA triad and then show how different areas within healthcare organizations can have different perspectives based on their primary area of responsibility.

Read More →

Commentary, Cybersecurity, Medical Devices, Vulnerabilities

Using EPSS and CVSS to prioritize Medical Device Vulnerability Management

Utilizing the CVSS and EPSS scoring systems together to prioritize medical device vulnerabilities.

Read More →

Commentary, Cybersecurity, Medical Devices

October 9, 2024

Understanding the EPSS System for Scoring Cybersecurity Vulnerabilities and Its Pitfalls for Medical Devices

What is the EPSS scoring system and how can it be used to help prioritize medical device vulnerabilities in your vulnerability management process.

Read More →

Commentary, Cybersecurity, Medical Devices, Vulnerabilities

October 7, 2024

Understanding the Basics of the CVSS System and Its Challenges in Medical Device Vulnerability Scoring

The CVSS system is a common and widely accepted method to score vulnerability severity but… It has its challenges when it comes to medical devices.

Read More →

Alerts, Cybersecurity, Medical Devices

Health Canada Recall – Baxter Spectrum Wireless Battery Modules

Baxter is releasing a WBM software update that addresses a condition where Spectrum WBM may fail to auto-document infusion status information back to hospital’s electronic medical record (EMR) system

Read More →

Alerts, Cybersecurity, Medical Devices

Philips Vue PACS

Exploitation of these vulnerabilities could allow an unauthorized person or process to eavesdrop, view or modify data, gain system access, perform code execution, install unauthorized software, or affect system data integrity to negatively impact system confidentiality, integrity, or availability.

Read More →

Commentary, Cybersecurity, Medical Devices

September 3, 2024

CrowdStrike Outage – Resources for Healthcare

Resources for the recent CrowdStrike outage – tailored to healthcare.

Read More →

Commentary, Medical Devices

July 21, 2024

CrowdStrike Outage in Canadian Healthcare

Impacts of the CrowdStrike outage in Canadian healthcare and how to use it to get your department ready for future responses.

Read More →

Coming Soon, Commentary, Cybersecurity, Medical Devices, Reading Material

July 4, 2024

STATE OF SECURITY REPORT

The challenge facing Biomedical Engineering departments and the complexity of medical device cybersecurity and vulnerability management.

Read More →

Alerts, Cybersecurity, Medical Devices

US Government releases new advisory for phishing attacks in healthcare

The FBI and the US Department of Health and Human Services (HHS) have released a joint statement to distribute information on known indicators of compromise (IOC) and tactics, techniques, and procedures (TTP) used in phishing and social engineering campaigns targeting healthcare.

Read More →