FDA alerts providers, others to medical device cyber vulnerability

Oct 01, 2019 - 03:18 PM
cybersecurity-hand-lock-graphic_900x400

The Food and Drug Administration today recommended medical device manufacturers, health care providers and patients take certain actions to reduce the risk that a remote attacker could exploit a set of cybersecurity vulnerabilities to control a medical device or prevent it from functioning. The agency to date has not received any adverse event reports associated with the vulnerabilities, announced in a July advisory from the Department of Homeland Security. The vulnerabilities exist in IPnet, a third-party software component that supports network communications between computers. The software is part of several operating systems and may be used in a wide range of medical and industrial devices.
 

Related News Articles

Headline
FDA issues most serious recall for certain speed control dials used for wheelchairs
The Food and Drug Administration has identified a Class I recall of Max Mobility/Permobil SpeedControl Dials used with the SmartDrive MX2+ Power Assist Device…
Headline
NIST says critical vulnerability found in 7-Zip archiving software
A critical vulnerability has been identified in 7-Zip, a free software program used for archiving data, according to the National Institute of Standards and…
Headline
Agencies release guide to protect against bulletproof hosting provider cybercrimes 
U.S. and international agencies Nov. 19 released a guide on mitigating potential cybercrimes from bulletproof hosting providers. A BPH provider is an internet…
Headline
Agencies release updated guidance to combat Akira ransomware following recent attacks
A joint advisory issued yesterday by U.S. and international agencies provides updated guidance to defend against the Akira ransomware group, which…
Headline
Infant formula recall expands as botulism outbreak cases grow
ByHeart has expanded its voluntary recall to include all Whole Nutrition Infant Formula cans and Anywhere Pack products amid an investigation by the Food and…
Headline
Agencies release guidance on Microsoft Exchange server best practices
The National Security Agency, Cybersecurity and Infrastructure Security Agency and international partners released joint guidance Oct. 30 on best practices for…