It has been reported that nearly 50% of manufactures don’t test their devices highlighting critical security deficiencies in today’s medical devices. Synopsys, Inc. released the results of the study “Medical Device Security: An Industry Under Attack and Unprepared to Defend,” which found that 67 percent of medical device manufacturers and 56 percent of healthcare delivery organizations (HDOs) believe an attack on a medical device built or in use by their organizations is likely to occur over the next 12 months. Tim Erlin, Vice-President of Product Management and Strategy at Tripwire commented below.
Tim Erlin, Vice-President of Product Management and Strategy at Tripwire:
“The fact that the majority of both manufacturers and providers believe that more attacks on these devices are likely should be a clear indicator that medical device security is a pervasive problem.
It’s not surprising that the vast majority of respondents see attacks as inevitable, given that less than 10% actually test the security of these devices at least annually. It’s shocking to think that the devices delivering care to patients simply aren’t tested for security.
The problems surrounding medical device security are varied, but they’re not new. Other industries have struggled with similar challenges around testing, disclosure of security issues and alignment between vendors and users. It requires a focused effort to address these challenges head on. It’s unacceptable to put patient care in the hands of insecure and untested devices.”
The opinions expressed in this post belongs to the individual contributors and do not necessarily reflect the views of Information Security Buzz.