Philips, CISA Warn of Medical Device Product Security Flaws

Exploitation Could Allow Access to Patient Data, Denial of Service Attacks

Philips, CISA Warn of Medical Device Product Security Flaws

Certain Philips' patient monitoring products are the subject of new security alerts from the manufacturer and CISA.

Federal regulators and Philips this week issued advisories pertaining to several security vulnerabilities identified in certain patient monitoring and medical device interface products from the manufacturer.

Federal regulators and Philips this week issued advisories pertaining to several security vulnerabilities identified in certain patient monitoring and medical device interface products from the manufacturer.

Exploitation could allow attackers to access patient data, launch denial of service attacks and more, they warn. The advisories pertain to vulnerabilities in Philips' Patient Information Center iX (PIC iX) and Efficia CM Series patient monitoring software and the company's IntelliBridge EC40 and EC80 systems - C.00.04 and prior versions, which are interfacing products to transfer data from point-of-care medical devices to hospitals' other information systems.

Benjamin Denkers, CIO Privacy and Security at CynergisTek, discusses vulnerabilities identified in the Philips products and common issues in many medical devices.

Read the full article here.

About the Author

CynergisTek, Inc.

CynergisTek is a top-ranked cybersecurity consulting firm dedicated to serving the information assurance needs of healthcare. CynergisTek offers specialized services and solutions to help organizations achieve privacy, security, and compliance goals. The company has been recognized by KLAS in the 2016 and 2018 Cybersecurity reports as a top performing firm in healthcare cybersecurity, as well as the 2017 Best in KLAS winner for Cybersecurity Advisory Services.

Follow on Twitter Follow on Linkedin Visit Website More Content by CynergisTek, Inc.
Previous Article
Regional Multi-Service Health System Signs New Six-Figure Agreement with CynergisTek for Cybersecurity Services
Regional Multi-Service Health System Signs New Six-Figure Agreement with CynergisTek for Cybersecurity Services

CynergisTek adds a multi-hospital full service Midwest regional health system with more than 30 locations t...

Next Video
Using the NIST Privacy Framework as a Blueprint for Your Privacy Program Webinar
Using the NIST Privacy Framework as a Blueprint for Your Privacy Program Webinar

In this webinar, Marti Arvin and Catherin Bertrand discuss a detailed overview of the NIST Privacy Framewor...