Forescout acquires medical IoT security company CyberMDX

Silicon Valley cybersecurity company Forescout Technologies said Tuesday that it is acquiring CyberMDX, a medical-device security company known for its research into potential cyberthreats against health care technology. CyberMDX is a natural fit for Forescout, which focuses on securing connected devices and operational technology (OT) for large organizations — including what the industry calls the Internet of Medical Things (IoMT). Terms of the deal were not disclosed. “Cybersecurity for IoMT, much like cybersecurity for OT devices, requires specific expertise and technologies,” Forescout CEO Wael Mohamed said. “We are pleased to have the CyberMDX team join Forescout as we continue delivering new capabilities on our market-leading platform and grow our R&D center.” Research by CyberMDX has been responsible for shedding light on critical vulnerabilities in widely used medical imaging devices, patient monitors, anesthesia machines and infusion pumps. Forescout’s platform specializes in “device intelligence and network fabric technology,” or finding and classifying […]

The post Forescout acquires medical IoT security company CyberMDX appeared first on CyberScoop.

Continue reading Forescout acquires medical IoT security company CyberMDX

Hospitals still not protected from dangerous vulnerabilities

Ipsos conducted a research which examines attitudes, concerns, and impacts on medical device security as well as cybersecurity across large and midsize healthcare delivery organizations. Insights include how they correlate and diverge. Healthcare is on… Continue reading Hospitals still not protected from dangerous vulnerabilities

Bug could expose patient data from GE medical imaging devices, researchers warn

Security researchers have discovered a software vulnerability that could allow an attacker to steal sensitive patient data from X-ray and MRI machines, or more than 100 models of General Electric medical devices. While there is no evidence that hackers have exploited the vulnerability for their own gain, the flaw points to the recurring issue of health care devices sending patient information over insecure channels. In this case, the maintenance software for the GE medical devices used publicly-exposed login credentials, which could allow attackers to execute code on the devices. “The bigger picture here is authentication and it’s a problem that’s unfortunately typical for medical devices,” said Elad Luz, a researcher at CyberMDX, the medical security company that publicly disclosed the vulnerability on Tuesday. Using the vulnerability to steal patient data would require a malicious hacker to first gain access to a health care organization’s computer network. Actually leveraging the bug […]

The post Bug could expose patient data from GE medical imaging devices, researchers warn appeared first on CyberScoop.

Continue reading Bug could expose patient data from GE medical imaging devices, researchers warn

Critical, Unpatched Bugs Open GE Radiological Devices to Remote Code Execution

A CISA alert is flagging a critical default credentials issue that affects 100+ types of devices found in hospitals, from MRI machines to surgical imaging. Continue reading Critical, Unpatched Bugs Open GE Radiological Devices to Remote Code Execution

CyberMDX integrates its Healthcare Security Suite into Philips Cybersecurity Services

CyberMDX announced a partnership with Philips to integrate CyberMDX’s Healthcare Security Suite into the newly introduced integrated Cybersecurity Services offered by Philips. The proliferation of millions of connected medical devices allows user… Continue reading CyberMDX integrates its Healthcare Security Suite into Philips Cybersecurity Services

CyberMDX Announces Partnership with Philips to Integrate CyberMDX into Newly Announced Integrated Cybersecurity Services

Industry leaders partner and create a vendor-neutral cybersecurity service CyberMDX is an integral part of Philips Cybersecurity Services for health technologies New York, NY – CyberMDX, a leading healthcare cybersecurity provider delivering visi… Continue reading CyberMDX Announces Partnership with Philips to Integrate CyberMDX into Newly Announced Integrated Cybersecurity Services

CyberMDX completes integration certification for the Microsoft Azure Security Center for IoT

CyberMDX, a leading provider of medical cyber security solution, delivering asset visibility and threat prevention for medical devices and clinical assets, announced that it has completed integration certification for the Microsoft Azure Security Cente… Continue reading CyberMDX completes integration certification for the Microsoft Azure Security Center for IoT