Cybercriminals are now able to inflict mass harm across global networks using simple tools such as email and malware. Already, cybercriminals have impacted institutions in the financial, entertainment, health, and government sectors.
While medical devices have not yet been deliberately targeted. Many of these links are directly connected to a hospital’s larger network that is much more vulnerable to attack.
This makes the information that major medical devices hold vulnerable as well. When it comes to medical devices, it is not only the information that is at risk. But in fact, the very lives of those who use and depend on the devices.
In Oct. 2018, FDA commissioner Scott Gottlieb admitted that “the risk of such an attack persists.”
So what is the level of risk, and what can companies do to negate it?
How high is the Medical Technology risk?
Cybersecurity experts are known within the industry as ‘white hat hackers’ have revealed a number of security concerns. With medical devices in areas of both clinical and research-oriented work. They also agreed that it is not a matter. But when a criminal hack involving these types of products is attempted.
A research group at the Israel’s Ben-Gurion University of the Negev was able to demonstrate that CT scanners. With outdated software was vulnerable to an attack that would allow adjustments of applied radiation to levels harmful for human wellbeing.
While the study did admit that the ability to control such medical devices might be limited. There is no doubt that even the risk was serious enough to cause concern within the medical industry.
FDA’s Plan
Last year, the FDA launched a cybersecurity playbook with the MITRE Corporation. In order to help promote cybersecurity safety for healthcare providers and professionals.
The idea behind ‘playbook’ is that it will encourage a positive and practical launch pad for companies. To focus on the overall cybersecurity of the healthcare industry as a whole.
Identifying future challenges
As the healthcare industry is deeply interconnected, it is crucial for professionals and regulators on all sides to ensure that devices are specifically designed. It is crucial that from the ground up professionals are as resistant as possible to external attacks.
More and more medical businesses are using an external medical device cybersecurity company to make absolutely sure that their medical devices meet cybersecurity requirements and continue to maintain an extremely high standard.
Going forward, FDA itself should implement more proactive approaches to ensure safety is a top priority. If regulatory bodies such as the FDA continue to develop new ways to maintain security within the industry.
Ultimately, what matters most is the security of the devices that are used and the safety of the people who use them. As long as the medical community agrees with that fact, people have little to worry about.