Tuesday, September 25, 2018

Philips warns of cybersecurity vulnerabilities

Image from Philips Press Release
PARCA eNews – Sept. 12, 2018 – Philips Healthcare issued an advisory warning of a potential security vulnerability in its iSite and IntelliSpace PACS products. The company said that while it has received no reports of patient harm, it issued the advisory last spring as a precaution.

The company said that vulnerabilities resulted predominantly from third-party components that could be exploited by low-skill attackers. Some of the potential damage that could occur include: unexpected input into applications, execution of arbitrary code, alteration to intended control flow of the system, access to sensitive information and potential system crash.

The company does not believe that the vulnerabilities would impact clinical use. To protect against the vulnerabilities Philips encourages customers to enroll in its automated monthly antivirus and patch program.

For more details, the company posted a link to the ICS-CERT advisory online.

Sources: Health IT Security and Dept. of Homeland Security Industrial Control Systems Cyber Emergency Response Team

No comments:

Post a Comment