FDA alerts providers, others to medical device cyber vulnerability

Oct 01, 2019 - 03:18 PM
cybersecurity-hand-lock-graphic_900x400

The Food and Drug Administration today recommended medical device manufacturers, health care providers and patients take certain actions to reduce the risk that a remote attacker could exploit a set of cybersecurity vulnerabilities to control a medical device or prevent it from functioning. The agency to date has not received any adverse event reports associated with the vulnerabilities, announced in a July advisory from the Department of Homeland Security. The vulnerabilities exist in IPnet, a third-party software component that supports network communications between computers. The software is part of several operating systems and may be used in a wide range of medical and industrial devices.
 

Related News Articles

Headline
Agencies release updated guidance to combat Akira ransomware following recent attacks
A joint advisory issued yesterday by U.S. and international agencies provides updated guidance to defend against the Akira ransomware group, which…
Headline
Infant formula recall expands as botulism outbreak cases grow
ByHeart has expanded its voluntary recall to include all Whole Nutrition Infant Formula cans and Anywhere Pack products amid an investigation by the Food and…
Headline
Agencies release guidance on Microsoft Exchange server best practices
The National Security Agency, Cybersecurity and Infrastructure Security Agency and international partners released joint guidance Oct. 30 on best practices for…
Headline
Recall issued for mislabeled potassium chloride
The Food and Drug Administration yesterday published an announcement from Otsuka ICU Medical saying that the company issued a voluntary recall for a mislabeled…
Headline
Microsoft issues security update addressing critical vulnerability impacting Windows server services 
Microsoft has released a security update to address a critical remote code execution vulnerability impacting multiple versions of Windows Server Update…
Headline
2025 Cybersecurity Year in Review, Part Two: Mitigating Third-Party Risk, Ensuring Clinical Continuity and Addressing AI Risk
In part two of a recent blog, AHA National Advisor for Cybersecurity and Risk John Riggi and AHA Deputy National Advisor for Cybersecurity and Risk Scott Gee…