Skip Navigation

Critical Infrastructure News

There are a few significant challenges healthcare delivery organizations face in protecting their networks from security threats. The first is the trend of the escalating frequency of vulnerabilities found in networked medical devices.

The Cybersecurity and Infrastructure Security Agency recently released ICS Medical Advisory (ICSMA-21-084-01), which focuses on a specific vulnerability found in the Philips Gemini PET/CT family of scanners, which store patient data in detachable media without access control.

Legacy medical devices such as this particular line of PET/CT scanners layer further complications onto the problem of unsecured PHI storage; many of the vulnerabilities affecting these devices are difficult if not impossible to remediate, given their irregular and sometimes unsupported operating systems.

Read more: HSToday

IBM Security’s annual X-Force Threat Intelligence Index uses data derived from across our teams and managed customers to gather insights about the topmost targeted industries every year, helping organizations manage risk and resource investment in their security programs.

When it comes to managing digital risk and facing potential cyberattacks, each industry faces its own unique attack landscape, as different threat actors, motivations, assets and geopolitical events drive adversarial activity in each sector.

To map the most targeted industries, IBM used data insights from 2020 attacks to look at what can be expected in 2021. The data showed finance, manufacturing and energy at the very top of a list of targeted sectors.

Read more: Security Intelligence

IBM Security has released the 2021 X-Force Threat Intelligence Index highlighting how cyberattacks evolved in 2020 as threat actors sought to profit from the unprecedented socioeconomic, business and political challenges brought on by the COVID-19 pandemic. 

In 2020, IBM Security X-Force observed attackers pivoting their attacks to businesses for which global COVID-19 response efforts heavily relied, such as hospitals, medical and pharmaceutical manufacturers, as well as energy companies powering the COVID-19 supply chain.

According to the new report, cyberattacks on healthcare, manufacturing, and energy doubled from the year prior, with threat actors targeting organizations that could not afford downtime due to risks of disrupting medical efforts or critical supply chains. In fact, manufacturing and energy were the most attacked industries in 2020, second only to the finance and insurance sector. Contributing to this was attackers taking advantage of the nearly 50% increase in vulnerabilities in industrial control systems (ICS), which manufacturing and energy both strongly depend on.

Read more: HS Today