CISA Offers Update on Philips Patient Monitoring Flaws
Healthcare Info Security
Marianne Kolbasuk McGee
Federal authorities have issued an updated advisory about security vulnerabilities in certain patient monitoring devices manufactured by Philips, which, if exploited, could result in unauthorized access to patient data and interruptions in monitoring.
In an alert issued this week, the Cybersecurity and Infrastructure Security Agency notes that successful exploitation of several flaws identified in Philips patient monitoring gear "could result in unauthorized access, interrupted monitoring and collection of access information and/or patient data."
CISA notes, however, that to successfully exploit these vulnerabilities, an attacker would need to gain either physical access to surveillance stations and patient monitors or access to the medical device network.