healthcare Archives - Page 5 of 6

Santesoft Sante FFT Imaging

Successful exploitation of this vulnerability could allow an attacker to disclose information and execute arbitrary code. CISA Number: ICSMA-23-285-02 CVE Number: CVE-2023-5059 Vendor Website: Vulnerability Information Additional Information:

Read More →

Alerts

Santesoft Sante DICOM Viewer Pro

Successful exploitation of these vulnerabilities could allow an attacker to disclose information and execute arbitrary code. CISA Number: ICSMA-23-285-01 CVE Number: Multiple CVE’s associated with this alert Vendor Website: Vulnerability Information Additional Information:

Read More →

Alerts

October 12, 2023

Softneta MedDream PACS

Successful exploitation of these vulnerabilities could allow an attacker to obtain and leak plaintext credentials or remotely execute arbitrary code. CISA Number: ICSMA-23-248-01 CVE Number: Multiple CVE’s for this alert Vendor Website: Vulnerability Information Additional Information:

Read More →

Commentary, Cybersecurity, Media

October 25, 2023

Recent Data Breach Raises Concerns in BC

In a recent cyberattack, cybercriminals targeted the Health Employers Association of BC (HEABC), exposing personal data of healthcare workers in British Columbia (BC). This incident highlights the critical importance of cybersecurity in the public sector. The BC government reported that three of their websites fell victim to the attack, leading to a significant breach of

Read More →

Alerts

October 11, 2023

BD Alaris System with GuardRails Suite MX

BD Alaris pump system vulnerabilities – icsma-23-194-01

Read More →

Alerts

October 11, 2023

Medtronic Paceart Optima System

Medtronic Paceart vulnerability – ICSMA-23-180-01

Read More →

Coming Soon

March 20, 2024

Comprehensive Vulnerability Database

Widely dispersed information on cybersecurity vulnerabilities makes managing risk challenging. Our database gathers information from multiple sources and cross-references it making research and decision-making easier.

Read More →

Commentary, Cybersecurity, Medical Devices

October 11, 2023

Cybersecurity in Biomedical Engineering Departments: Ensuring Patient Care and Safety

Discover the critical challenges faced by biomedical engineering departments in ensuring robust cybersecurity. From navigating complex environments to tackling legacy systems, read on to understand how prioritizing cybersecurity measures and fostering awareness can safeguard patient care and valuable medical data effectively. Explore actionable strategies to enhance cybersecurity in biomedical engineering and protect against evolving cyber…

Read More →

Commentary, Cybersecurity, Medical Devices

October 11, 2023

FDA’s New Guidance on Medical Device Cybersecurity: Weighing the Pros and Cons

Though a significant improvement and providing optimism for the future of medical device cybersecurity, the FDA’s new guidance is still has short-comings… Teeth!

Read More →

Coming Soon, Cy4med, Cybersecurity, Vulnerabilities

October 18, 2023

The Impetus

Over the last 10 years we have spent a lot of time researching cybersecurity vulnerabilities for medical devices. In that time several themes arise repeatedly; information is highly fragmentary, if it can be found at all, and it is poorly cross-referenced. Even our good friends to the South have not managed to compile a good,

Read More →

Alerts

October 12, 2023

Illumina Universal Copy Service

Successful exploitation of these vulnerabilities could allow an attacker to take any action at the operating system level. A threat actor could impact settings, configurations, software, or data on the affected product; a threat actor could interact through the affected product via a connected network. CISA Number: ICSMA-23-117-01 CVE Number: Multiple CVE’s are involved in

Read More →

Alerts

October 12, 2023

B. Braun Battery Pack SP with Wi-Fi

Successful exploitation of this vulnerability could allow a sophisticated and authenticated attacker to compromise the security of the Space communication device Battery Pack SP with Wi-Fi. An attacker could escalate privileges, view sensitive information, upload arbitrary files, and perform remote code execution. CISA Number: ICSMA-23-103-01 CVE Number: CVE-2023-0888 Vendor Website: Vulnerability Information Additional Information:

Read More →