December 9, 2024 at 06:03PM Artivion experienced a ransomware attack on November 21, disrupting operations and forcing some systems offline. The company is investigating the incident, involving external advisors, and has reported data encryption and theft. While most operational disruptions have been addressed, additional costs are expected, and no ransom demands have yet been claimed. … Read more
December 9, 2024 at 09:06AM Artivion disclosed a ransomware attack on November 21, disrupting order and shipping processes. The company, which manufactures aortic-centric medical devices, took systems offline for investigation and remediation. While it believes the attack won’t materially affect finances, some remediation costs may not be insured. Details on the threat actor remain undisclosed. … Read more
May 16, 2024 at 03:40PM Researchers found 11 security flaws in GE’s Vivid Ultrasound products and related software, with severity ranging from 5.7 to 9.6 on the CVSS 3.1 scale. Nozomi Networks detailed potential risks, including remote code execution, but physical access is needed in some cases. GE has patches and mitigations available on its … Read more
March 13, 2024 at 10:45AM Ransomware attacks on the healthcare sector continue and are unlikely to decrease due to the industry’s susceptibility to exploitation. The sector’s reliance on diverse OT devices controlled by IT systems over WiFi, coupled with challenges in patching and device management, poses a significant security risk. Segmentation is recommended to mitigate … Read more
January 16, 2024 at 11:12AM The Internet of Things (IoT) devices offer great power and convenience, but also pose security and privacy risks. When purchasing IoT devices, it’s important to consider the company’s reputation, country of origin, security measures, and data privacy policies. Additionally, for healthcare-related IoT devices, it’s crucial to scrutinize data handling and … Read more
November 20, 2023 at 06:26PM The FDA has issued updated regulations regarding the cybersecurity requirements for medical devices. The regulations, found in Section 524B of the FD&C Act, went into effect on October 1, 2023. They apply to anyone submitting a premarket application for a “cyber device.” The purpose of the regulations is to ensure … Read more