Why medical devices are vulnerable to cyber attacks?
Smart healthcare is an integral part of smart cities. Modern medical devices are becoming increasingly software dependent. Doctors and patients are now using their smartphones to control and monitor implantable medical devices (IMDs) such as cardiac implants, insulin pumps, deep brain neurostimulators, etc. via the Internet or Bluetooth connections. Moreover, many on-site medical devices are connected to the hospital network giving rise to the concept of smart hospitals. Although such connectivity expands the devices’ ability to fulfill healing and diagnostic functions in a quick and cost-effective manner and can help save many lives, too much reliance on software also results in exposure to several security threats. Control of such devices via the underlying communication network may allow attackers to exploit the critical system vulnerabilities of these devices. Attackers could manipulate the settings or steal patients’ data remotely and without being detected.
On-site equipment such as MRIs, X-ray machines, PETs and so on, have vulnerabilities that could be exploited through cyber attacks. Software imperfections in the device are thereby exploited, such as hardcoded credentials, outdated operating systems, and lack of authentication mechanisms. These attacks are aimed at stealing patient data, falsifying analysis results, or performing ransomware attacks by introducing malware into the network. In almost all cases, the latter type of attacks is due to a lack of training of medical personnel in the use of such devices.
0 Comments