FDA Warns of Cyber Threats to Medical Devices
The Internet of Things includes a growing number of medical devices, from heart monitors to ventilators and multi-million dollar x-ray machines. More and more hospitals are connecting their equipment to the web in order to give healthcare practitioners access to real-time patient data, an increasingly valuable resource that can mean the difference between life and death.
This modernization is driving noticeable improvements in patient care, as vendors such as IBM are always quick to point out, but it also exposes patient data to cyber threats. Hospitals make particularly attractive targets for hackers due to the fact that medical records are in high demand on the black market.
The tremendous amount of risk associated with this trend has not gone unnoticed by the healthcare industry. The U.S. Food and Drug Administration recently released a note that outlines the threats faced by hospitals and medical device manufacturers, and lists some of the steps these organizations can take to reduce the chance of a security breach.
“Many medical devices contain configurable embedded computer systems that can be vulnerable to cybersecurity breaches. In addition, as medical devices are increasingly interconnected, via the Internet, hospital networks, other medical device, and smartphones, there is an increased risk of cybersecurity breaches, which could affect how a medical device operates.”
The document names several common security vulnerabilities, including the presence of malware on devices connected to hospital networks, lackluster access controls, unpatched software, and insecure off-the-shelf solutions. It recommends that device manufacturers limit unauthorized use of their products, protect individual components from exploitation, and build fail-safe mechanisms into their offerings. Lastly, vendors should incorporate data retention and recovery capabilities in their solutions.
The FDA advises healthcare providers to monitor network activity, perform routine evaluations of IT infrastructure, and contact device manufacturers when they identify potential security problems.
A message from John Furrier, co-founder of SiliconANGLE:
Support our mission to keep content open and free by engaging with theCUBE community. Join theCUBE’s Alumni Trust Network, where technology leaders connect, share intelligence and create opportunities.
- 15M+ viewers of theCUBE videos, powering conversations across AI, cloud, cybersecurity and more
- 11.4k+ theCUBE alumni — Connect with more than 11,400 tech and business leaders shaping the future through a unique trusted-based network.
About SiliconANGLE Media
SiliconANGLE Media is a recognized leader in digital media innovation, uniting breakthrough technology, strategic insights and real-time audience engagement. As the parent company of SiliconANGLE, theCUBE Network, theCUBE Research, CUBE365, theCUBE AI and theCUBE SuperStudios — with flagship locations in Silicon Valley and the New York Stock Exchange — SiliconANGLE Media operates at the intersection of media, technology and AI.
Founded by tech visionaries John Furrier and Dave Vellante, SiliconANGLE Media has built a dynamic ecosystem of industry-leading digital media brands that reach 15+ million elite tech professionals. Our new proprietary theCUBE AI Video Cloud is breaking ground in audience interaction, leveraging theCUBEai.com neural network to help technology companies make data-driven decisions and stay at the forefront of industry conversations.
