The Internet of Medical Things (IoMT) has enabled medical devices to transmit data and physicians to remotely adjust settings to tailor treatments. However, connecting medical devices to the Internet has also created cybersecurity risks which could allow hackers to access personal health data and interfere with treatment.
Seeking to identify the devices that pose the biggest risks to healthcare systems, Armis has analysed data in its security platform and found that nurse call systems and infusion pumps have the highest number of severely vulnerable unpatched Common Vulnerabilities and Exposures (CVEs).
While medication dispensing systems have far fewer ‘critical severity’ unpatched CVEs, at 4%, they are beset by less severe problems: Armis found that 86% of the systems had unpatched CVEs of any severity, compared to 48% of nurse call systems and 30% of infusion pumps.
Almost one-third, 32%, of the medication dispensing systems run on unsupported versions of Windows, compared to 19% of all devices. Some medical devices also have lifespans that far exceed the amount of time that software providers support operating systems, making outdated versions another key cybersecurity concern.
To read more, CLICK HERE