CISA Warns About Siemens, Philips Medical Device Flaws

November 15, 2021 CynergisTek, Inc.

Vulnerabilities Identified in Siemens' Nucleus RTOS, Philips MRI Products

CISA is warning of security flaws in Siemens' Nucleus products, as well as vulnerabilities in some Philips MRI devices.

Federal authorities this week issued alerts about security vulnerabilities identified in medical device products from two manufacturers, Siemens and Philips. Both companies also issued their own advisories related to the issues.

The advisories, all issued Tuesday, concern 13 security flaws in the TCP/IP stack and related services of Siemens' Nucleus Real-Time Operating System and three vulnerabilities in certain Philips MRI products.

In this article, Benjamin Denkers, CIO of Privacy and Security at CynergisTek discusses Siemens and Philips product vulnerabilities and how a patient can be affected and healthcare can be disrupted.

Read the full article.

About the Author

CynergisTek is a top-ranked cybersecurity consulting firm dedicated to serving the information assurance needs of healthcare. CynergisTek offers specialized services and solutions to help organizations achieve privacy, security, and compliance goals. The company has been recognized by KLAS in the 2016 and 2018 Cybersecurity reports as a top performing firm in healthcare cybersecurity, as well as the 2017 Best in KLAS winner for Cybersecurity Advisory Services.
Follow on Twitter Follow on Linkedin Visit Website More Content by CynergisTek, Inc.

Insights Center

CISA Warns About Siemens, Philips Medical Device Flaws

About the Author

Previous Article

Next Article

CISA Warns About Siemens, Philips Medical Device Flaws

About the Author

Previous Article

Next Article

Most Recent Articles

Benjamin Denkers, CIO Privacy and Security at CynergisTek, discusses vulnerabilities identified in the Philips products and common issues in many medical devices.

Mac McMillan discusses financial compensation for security leaders and challenges with attracting and retaining chief information security officers and other cybersecurity leadership.

In this article Mac McMillan, CEO of CynergisTek, shares insights into how security leaders can broach the topic of replacing legacy tech with hospital leadership.

Mac McMillan suggests that organizations change the way they approach cybersecurity and focus on strengthening enterprise-wide security through actionable strategies.

Marti Arvin, Executive Advisor at CynergisTek, shares her comments on breach notification laws with varying reporting deadlines that could potentially pertain to AOA.

Healthcare IT News interviewed Mac McMillan, who recently returned to the CEO role at CynergisTek, the cybersecurity consultancy he cofounded.

Marti Arvin, Executive Advisor at CynergisTek, discusses updated timelines for recipients of PRFs regarding both using the funds and reporting on the use of the funds.

Mac McMillin, CEO of CynergisTek discusses the breadth and scope of the information public health departments.

Ben Denkers, EVP of operations at CynergisTek, breaks down what hive ransomware is and how damaging it can be in this article.

David Finn, Executive Vice President at CynergisTek, offers commentary for this piece which discusses the recent targeted attack on HVAC.

David Finn offers commentary for this piece, which covers unique operational requirements and the different segments of healthcare that can also face different difficulties with IAM.

In this Interview, Caleb Barlow discusses CMMC and major defense contractors' future with cyber security.

Ben Denkers, EVP of operations at CynergisTek, discusses CynergisTek's dynamic cybersecurity and privacy solutions to help our healthcare clients build an approach that responds every day.

Marti Arvin, Executive Advisor at CynergisTek, shares her comments on the uncertain impacts of the changes to the CARES Act.

Caleb Barlow discusses ways to improve CMMC readiness once the DoD comes knocking.

In this video, Caleb Barlow discusses what qualifies as critical infrastructure, and what’s getting left out.

In this Interview, Caleb Barlow, CEO of CynergisTek discusses the recent pipeline cyberattack and how organizations can invest even more in cybersecurity to prevent an attack.

Caleb Barlow, CEO of CynergisTek discusses the need for healthcare organizations to invest even more in cybersecurity, as well as the importance of multi-factor authentication.

Marti Arvin covers the American College of Emergency Physicians, which says a "malware" attack affected tens of thousands of the group's current and former members.

Caleb Barlow provided commentary for this article, where he shares his perspectives about the recent breach at Atascadero State Hospital in California.