HHS Urges Healthcare Sector to Bolster Cybersecurity for Medical Devices
BankInfoSecurity
|
Contributed by: Drex DeFord
Summary
The U.S. Department of Health and Human Services (HHS) has issued a warning for healthcare organizations to improve the cybersecurity of operational technology (OT) and Internet of Medical Things (IoMT) devices, which are increasingly targeted by cybercriminals. The advisory highlights that while regulatory focus has been on medical devices, other connected systems such as HVAC and elevators also present security risks due to outdated software and insufficient cybersecurity measures. HHS notes that many of these devices lack vendor support and operate in environments that hinder necessary updates, making them vulnerable to attacks that could compromise patient safety and sensitive data. Recent analyses indicate that both targeted and non-targeted attacks exploit these vulnerabilities, raising concerns about the potential for ransomware incidents involving OT and IoMT devices.
