Tag Archives: cybersecurity

Healthcare Technology

The Role of EPSS in Prioritizing IoMT Security Threats

By Shankar Somasundaram
Healthcare Technology

The Exploit Prediction Scoring System (EPSS) can help healthcare organizations prioritize security vulnerabilities, but it has limitations in IoMT environments. While EPSS provides valuable data-driven prioritization, it should be combined with other risk assessments, cybersecurity frameworks, and strategies to more comprehensively secure healthcare systems’ IoMT devices.

Continue reading

Errol Weiss

Information Sharing: A Valuable Tool in Preventing Cyber Attacks

By MedTech Intelligence Staff
Errol Weiss

Information Sharing and Analysis Centers (ISACs), developed to help critical infrastructure industries prevent and become more resilient to cyber and physical security attacks, are expanding their strategies to meet ever-evolving threats. Errol Weiss, Chief Security Officer of the Health-ISAC, discusses how these groups work to protect industry, emerging threats and how device developers and healthcare organizations are working together to protect patients.

Continue reading

Dave Bailey

Utilizing CSF to Manage Cyber Risks

By MedTech Intelligence Staff
Dave Bailey

Dave Bailey, VP of Consulting Services at Clearwater Security, highlights the need for top-down support in managing healthcare-related cyber risks and how the new NIST Cybersecurity Framework can help enhance cybersecurity in healthcare and MedTech organizations.

Continue reading

NIST logo

NIST Releases Updated Cybersecurity Framework

By MedTech Intelligence Staff
NIST logo

The National Institute of Standards and Technology (NIST) has updated its Cybersecurity Framework (CSF) guidance document for reducing cybersecurity risk. The new 2.0 edition is designed for all audiences, industry sectors and organization types. This is the framework’s first major update since its creation in 2014.

Continue reading

Roger Lam
Soapbox

5 Ways to Maximize the Security of Edge Medical Devices

By Roger Lam
Roger Lam

Timely firmware updates are only one part of the hardware-related security equation. Whether it’s a hematology analyzer, CT scanner or any other networked medical device, the ability to withstand as well as recover from a malicious attack begins with the contract manufacturer that builds the embedded system. Here are five questions to ask your hardware integrator to be sure that your devices are equipped with maximum protection both before and after delivery.

Continue reading

Cybersecurity

Preparing for the PATCH Act and RTA

By MedTech Intelligence Staff
Cybersecurity

The FDA announced that on October 1, 2023, it would begin to Refuse to Accept (RTA) medical device premarket submissions that do not comply with PATCH Act requirements. Erez Kaminski, former head of AI with Amgen and founder of  Ketryx, and Paul Jones, former FDA official and Executive Vice President of Ketryx, provide an overview of challenges companies face as they work to comply with the new cybersecurity regulations and standards.

Continue reading