The FBI issued a Private Industry Notification targeted to the health care sector on September 12, 2022, warning that it has “identified an increasing number of vulnerabilities posed by unpatched medical devices that run on...more
Ransomware Attacks Predicted to Occur Every 11 Seconds in 2021 with a Cost of $20 Billion -
Confirming what we are seeing in the field, cybersecurity firm Cybersecurity Ventures has predicted that, globally, businesses in...more
2/14/2020
/ Bitcoin ,
Brand ,
California Consumer Privacy Act (CCPA) ,
China ,
Critical Infrastructure Sectors ,
Cyber Attacks ,
Cyber Crimes ,
Cyber Threats ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Data Security ,
Digital Wallets ,
Drones ,
Email ,
Emergency Response ,
General Data Protection Regulation (GDPR) ,
Hackers ,
Legislative Agendas ,
Medical Devices ,
Personal Data ,
Personally Identifiable Information ,
Phishing Scams ,
Proposed Legislation ,
Regulatory Requirements ,
Risk Mitigation ,
Rulemaking Process ,
State Attorneys General ,
Threat Management ,
Unmanned Aircraft Systems ,
Vulnerability Assessments
Many cities in the United States utilize a self-pay portal for residents to pay bills online, known as Click2Gov. Click2Gov was compromised in 2017 and 2018, when hackers were able to access over 300,000 payment cards and...more
9/30/2019
/ Biometric Information ,
California Consumer Privacy Act (CCPA) ,
Cybersecurity ,
Data Breach ,
Data Collection ,
Data Privacy ,
Dating Services ,
Drones ,
Enforcement Actions ,
False Advertising ,
Federal Trade Commission (FTC) ,
Fraudulent Marketing ,
Hackers ,
Medical Devices ,
Online Banking ,
Personally Identifiable Information ,
Popular ,
Social Networks ,
Unmanned Aircraft Systems ,
Vimeo
DHS Warns Businesses of Risk of Iranian-Backed Wiper Malware Attacks -
The tension with Iran has generally increased, and it has been reported that the U.S. has launched a cyber-attack against Iran. In retaliation, the risk...more
7/5/2019
/ Biometric Information ,
Canada ,
Closing a Business ,
Colleges ,
Connected Items ,
Cybersecurity ,
Data Collection ,
Data Management ,
Data Privacy ,
Department of Homeland Security (DHS) ,
Drones ,
Educational Institutions ,
Information Technology ,
Internet of Things ,
Iran ,
Malware ,
Medical Devices ,
Personal Data ,
Pharmaceutical Industry ,
Popular ,
Universities
In my 25 years in the data privacy and cybersecurity profession, this is the first time that I believe a medical device has been recalled because of a cybersecurity risk. This week, Medtronic recalled its 508 Insulin pumps...more
These days, pretty much everyone is aware of potential security incidents and the risks involved with Internet of Things (IoT) devices because security was not built into the device during the manufacturing process, but there...more
In an effort to phase out what many in the security world believe are threats to the cybersecurity posture of governmental agencies and private entities alike, John Quinn, the Chief Information Officer of the State of...more
3/4/2019
/ California Consumer Privacy Act (CCPA) ,
China ,
COPPA ,
Cybersecurity ,
Data Privacy ,
Drones ,
Hackers ,
Healthcare ,
Internet ,
Medical Devices ,
Online Safety for Children ,
Reputation Management ,
Russia ,
Smart Devices ,
Social Media ,
Software ,
Vulnerability Assessments
On October 1, 2018, the Food and Drug Administration (FDA) issued its “Medical Device Cybersecurity Regional Incident Preparedness and Response Playbook” to address continued threats to medical devices that could affect...more
10/8/2018
/ Airspace ,
ATDS ,
Auto-Dialed Calls ,
Bitcoin ,
Cryptocurrency ,
Cybersecurity ,
Data Breach ,
Data Protection ,
Digital Currency ,
Drones ,
Facebook ,
Food and Drug Administration (FDA) ,
Hackers ,
Investment Opportunities ,
Medical Devices ,
OMB ,
Online Platforms ,
Part 107 ,
Popular ,
Public Safety ,
Robocalling ,
Social Media ,
Social Networks ,
Toyota ,
Trading Platforms ,
Unmanned Aircraft Systems ,
Virtual Currency
On October 1, 2018, the Food and Drug Administration (FDA) issued its “Medical Device Cybersecurity Regional Incident Preparedness and Response Playbook” to address continued threats to medical devices that could affect...more
10/4/2018
/ Connected Items ,
Cyber Attacks ,
Cybersecurity ,
Emergency Management Plans ,
Emergency Response ,
Food and Drug Administration (FDA) ,
Hackers ,
Healthcare ,
Life Sciences ,
Medical Devices ,
Patient Safety ,
Pharmaceutical Industry ,
Risk Management
Cisco Talos has discovered a new menace to iPhone users—a sophisticated malware campaign targeting iPhones to trick users into downloading an open-source Mobile Device Management (MDM) solution that gives the hackers control...more
7/23/2018
/ Baseball ,
Cyber Attacks ,
Cybersecurity ,
Data Privacy ,
Drones ,
Electronic Medical Records ,
Event Tickets ,
Health Care Providers ,
iPhone ,
Malware ,
Medical Devices ,
Personally Identifiable Information ,
PHI ,
Popular
Wearable technology and medical devices have vulnerabilities just like anything else that is digital.
ICS-CERT recently issued an advisory about vulnerabilities in Medtronic’s MyCareLink patient heart monitors. ...more
We have previously reported on the ongoing cybersecurity issues with St. Jude defibrillators [view related posts here, here, and here]. On June 29, 2018, the Food and Drug Administration (FDA) classified the required firmware...more
7/16/2018
/ Adidas ,
Computer Fraud and Abuse Act (CFAA) ,
Constitutional Challenges ,
Cyber Attacks ,
Cybersecurity ,
Data Breach ,
Drones ,
Emergency Management Plans ,
Emergency Response ,
EU-US Privacy Shield ,
Federal Aviation Administration (FAA) ,
Federal Trade Commission (FTC) ,
Food and Drug Administration (FDA) ,
Hackers ,
Healthcare ,
Healthcare Facilities ,
HIPAA Breach ,
Medical Devices ,
Mobile Apps ,
Popular ,
Ransomware ,
Regulatory Requirements ,
Regulatory Violations ,
St Jude Medical Center ,
Wildfires
We have previously reported on the ongoing cybersecurity issues with St. Jude defibrillators.
On June 29, 2018, the Food and Drug Administration (FDA) classified the required firmware updates to St. Jude defibrillators as...more
Abbott Laboratories has issued software patches to some of its implantable cardiac devices (manufactured by St. Jude) for cybersecurity flaws and battery issues that have plagued the devices, necessitating the U.S. Food and...more
“Orangeworm” Targeting Health Care Industry -
In what is being called a systematic targeting of large health care organizations, pharmaceutical companies, and IT companies and equipment manufacturers that service the...more
4/27/2018
/ Blue Shield ,
Criminal Investigations ,
Cyber Attacks ,
Cyber Insurance ,
Data Breach ,
Digital Currency ,
Drones ,
Enforcement Actions ,
Extraterritoriality Rules ,
Hackers ,
Health Care Providers ,
Healthcare ,
Medical Devices ,
Personal Data ,
PHI ,
Risk Management ,
Scams ,
September 11th Victim Compensation Fund ,
SunTrust ,
Unmanned Aircraft Systems ,
US v Microsoft ,
Virtual Currency
Inogen, which manufactures portable oxygen devices, has alerted the Securities and Exchange Commission in a recent filing that it is notifying 30,000 individuals that their personal information was compromised when a hacker...more
4/20/2018
/ Airspace ,
Cyber Attacks ,
Cybersecurity ,
Data Breach ,
Drones ,
EPIC ,
Federal Aviation Administration (FAA) ,
Hackers ,
Medical Devices ,
Personal Data ,
Ransomware ,
Risk Management
Inogen, which manufactures portable oxygen devices, has alerted the Securities and Exchange Commission in a recent filing that it is notifying 30,000 individuals that their personal information was compromised when a hacker...more
Inogen, which manufactures portable oxygen devices, has alerted the Securities and Exchange Commission in a recent filing that it is notifying 30,000 individuals that their personal information was compromised when a hacker...more
According to bloggers on techtarget.com, security risks around IoT continue to be problematic, and a new free guide, “The Developer’s Guide to IoT” has been published specifically for IoT device developers, which is a welcome...more
Cornerstone Business & Management Solutions, a medical supply company located in Nebraska, has notified 21,856 individuals and the Office for Civil Rights that while performing a routine review of system logs, it discovered a...more
The U.S. Department of Homeland Security (DHS) recently issued a warning that Smiths Medical Medfusion 4000 wireless syringe infusion pumps contain a security vulnerability that can be exploited by hackers to alter the...more
The Food and Drug Administration (FDA) issued guidance yesterday (September 6, 2017) entitled “Design Considerations and Pre-Market Submission Recommendations for Interoperable Medical Devices,” which is intended to “assist...more
The Food and Drug Administration (FDA) has issued a recall of 465,000 St. Jude Medical pacemakers in order to push a mandatory firmware patch of vulnerabilities in six types of radio controlled cardiac pacemakers....more
The Department of Homeland Security and Siemens Healthineers has identified cybervulnerabilities in the Windows 7-based versions of Siemens PET/CT systems, SPECT systems, SPECT/CT Systems and SPECT Workplaces/Symbia.net and...more
A new study by WhiteScope concludes that pacemakers from four manufacturers contain security weaknesses that expose them to remote tampering.
Pacemakers run on radio frequency and health care providers can adjust them to...more