Connected Medical Devices Accelerating Cyberattacks at Healthcare Facilities

Over 60 percent of healthcare cyberattacks impact patient data. 

By HFT Staff


Increased use of connected medical devices is accelerating cyberattacks, according to Capterra’s new Medical IoT Survey of healthcare IT professionals. The survey also reveals that 67 percent of healthcare cyberattacks impact patient data and nearly one-half  impact patient care, an indication that rising security risks in the industry are leading to severe consequences in patient outcomes and privacy. 

The medical Internet of Things (IoT) is helping to make healthcare more convenient, efficient, and patient-centric. But connected devices with IoT sensors (e.g., glucose monitors, insulin pumps, defibrillators) often have unprotected security vulnerabilities that endanger healthcare facilities and even patients. In fact, medical practices with more than 70 percent of their devices connected are 24 percent more likely to experience a cyberattack than practices with 50 percent or fewer connected devices. 

Fifty-three percent of healthcare IT staff rate the cybersecurity threat level in the industry as high or extreme, yet many healthcare organizations are not taking the necessary steps to protect medical IoT devices. Alarmingly, 57 percent do not always change the default username and password for each new connected medical device that is put into use. Additionally, 82 percent run connected medical devices on old Windows systems. 

If a security vulnerability is discovered, organizations should patch the device or update its firmware as soon as possible. Unfortunately, 68 percent of healthcare organizations do not always update connected devices when a patch is available. But vulnerabilities and associated patches are not always well publicized, which means healthcare IT staff must stay up to date on emerging threats to medical IoT devices. 

Medical IoT security requires proactive and ongoing vigilance. Healthcare practices should conduct routine vulnerability assessments before connecting medical devices to their IT network. They should also keep an up-to-date and accurate inventory of all connected devices plus associated software and firmware and use software to monitor these devices. 



December 1, 2022


Topic Area: Information Technology


Recent Posts

CRAB Alert: The EVS Role in Preventing Infection

CRAB is a Gram-negative bacterium that causes bloodstream infections, ventilator-associated pneumonia, surgical wound infections and meningitis in hospitalized patients.


Why Hospital Waiting Rooms Aren't Going Away

Despite advances in technology, thoughtfully designed reception spaces continue to evolve.


Ground Broken on Mount Sinai Tisch Cancer Hospital

The hospital is aiming to open in 2030 on Mount Sinai’s Upper East Side campus.


Design, Compartmentation, Training: How Defend-in-Place Strategies Can Protect Patients

Effective defend-in-place strategies depend on compartmentation, fire-rated assemblies and ongoing staff training to protect patients who cannot quickly evacuate.


Milestone Marked with Topping Out Ceremony for BayCare Hospital Manatee

Construction remains on schedule, with crews continuing work on interior spaces, infrastructure and clinical areas throughout the facility.


 
 


FREE Newsletter Signup Form

News & Updates | Webcast Alerts
Building Technologies | & More!

 
 
 


All fields are required. This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

 
 
 
 

Healthcare Facilities Today membership includes free email newsletters from our facility-industry brands.

Facebook   Twitter   LinkedIn   Posts

Copyright © 2023 TradePress. All rights reserved.