Additional information and commentary from All Things Security Blog:
FDA Releases Advisory for Cybersecurity in Medical Devices and Hospital Networks
On June 13th the U.S. Food and Drug Administration issued a cybersecurity advisory statement addressing the need for increased focus on security in medical devices and hospital networks. The statement is no surprise as it follows a more than a year of mounting pressuring and increasing evidence that the health-care sector is among the most vulnerable to hackers. Not only are they vulnerable but the data that typical medical networks contain is highly sensitive, Chris Wysopal outlined this in a recent interview with Fox News. And of course there’s also the fact that a medical device not working as it should can be the difference between life and death.
There’s no argument that the need for more security is apparent and imperative so we applaud the FDA for taking these first steps in remediating the problems at hand. The advisory statement recommends the following steps for medical device manufacturers;