cybersecurity Archives - Page 2 of 6

Some light cybersecurity reading I have found of interest this month.

Ossur Mobile Logic Application

Description: Successful exploitation of these vulnerabilities could allow an attacker unauthorized access to sensitive information. CISA Number: ICSMA-24-354-01 CVE Number: Multiple Vendor Website: https://www.ossur.com/en-ca Additional Information:

Read More →

Alerts

BD Diagnostic Solutions Products

Successful exploitation of this vulnerability could allow an attacker to use default credentials to access, modify, or delete sensitive data, which could impact the availability of the system or cause a system shutdown.

Read More →

Alerts

Baxter Life2000 Ventilation System

Successful exploitation of these vulnerabilities could lead to information disclosure and/or disruption of the device’s function without detection.

Read More →

Reading Material

December 4, 2024

Interesting Reading – December 2024

Here are some things that are interesting for December 2024.

Read More →

Reading Material

November 18, 2024

Interesting Reading – November 2024

Various links and documents that pertain to cybersecurity and healthcare cybersecurity that we have found interesting this month.

Read More →

Commentary, Cybersecurity, Medical Devices, Vulnerabilities

Using EPSS and CVSS to prioritize Medical Device Vulnerability Management

Utilizing the CVSS and EPSS scoring systems together to prioritize medical device vulnerabilities.

Read More →

Commentary, Cybersecurity, Medical Devices

October 9, 2024

Understanding the EPSS System for Scoring Cybersecurity Vulnerabilities and Its Pitfalls for Medical Devices

What is the EPSS scoring system and how can it be used to help prioritize medical device vulnerabilities in your vulnerability management process.

Read More →

Commentary, Cybersecurity, Medical Devices, Vulnerabilities

October 7, 2024

Understanding the Basics of the CVSS System and Its Challenges in Medical Device Vulnerability Scoring

The CVSS system is a common and widely accepted method to score vulnerability severity but… It has its challenges when it comes to medical devices.

Read More →

Reading Material

October 30, 2024

Interesting Reading – October 2024

Various links and documents that pertain to cybersecurity and healthcare cybersecurity that we have found interesting this month.

Read More →

Alerts

October 4, 2024

RansomHub RaaS (TLP: White/Priority: Medium) – Impacting Healthcare

RansomHub, a ransomware-as-a-service (RaaS) variant, remains at-large targeting at least 210 victims across multiple critical infrastructure sectors, including healthcare and public health organizations, since February 2024.

Read More →