By David Finn
Not so long ago, security in healthcare meant physical access: were the doors locked and unlocked at appropriate times? Now the focus has shifted as the industry witnesses hospital systems ransomed, malware slow clinical operations to a crawl and the implications of not doing basic security on systems—backups, patching and incident response plans that include system shutdowns, cyberattacks and data breaches. Now the attention is on the medical devices used on patients for diagnostic and therapeutic services.
Both the Department of Health and Human Services (HHS) and the Food and Drug Administration (FDA) have spent the past five years educating, guiding and regulating medical devices. During that time, more medical devices have been added to the networks with little regard to the privacy and security issues around them. Just this year, security researchers in two separate studies reported on technical vulnerabilities that pose significant risk to medical devices used in imaging. Those risks include data integrity, security, privacy and patient safety. One flaw in the DICOM standard actually allows malware to hide within medical images.[Read more…] about Medical Devices: Friend Or Foe, It’s Up to You