https://www.iotworldtoday.com/wp-content/themes/ioti_child/assets/images/logo/footer-logo.png
Banking Technology
  • NEWSLETTER
  • Home
  • News
  • Strategy
  • Special Reports
  • Galleries
  • Business Resources
    • Back
    • Webcasts
    • White Papers
    • Industry Perspectives
    • Featured Vendors
  • Other Content
    • Back
    • Q&As
    • Case Studies
    • Features
    • How-to
    • Opinion
    • Video / Podcasts
  • More
    • Back
    • About Us
    • Contact
    • Editorial Submissions
    • Advertise
    • Strategic Partners
  • IOT World Events
  • IIoT
  • Cities
  • Energy
  • Homes/Buildings
  • Transportation/Logistics
  • Health Care
  • Retail
  • Analytics
  • Architecture
  • Engineering/Development
  • Security
  • Home
  • News
  • Strategy
  • Special Reports
  • Galleries
  • Business Resources
    • Back
    • Webcasts
    • White Papers
    • Industry Perspectives
    • Featured Vendors
  • Other Content
    • Back
    • Q&As
    • Case Studies
    • Features
    • How-to
    • Opinion
    • Video / Podcasts
  • More
    • Back
    • About Us
    • Contact
    • Editorial Submissions
    • Advertise
    • Strategic Partners
  • IOT World Events
  • newsletter
  • IIoT
  • Cities
  • Energy
  • Homes/Buildings
  • Transportation/Logistics
  • Health Care
  • Retail
  • Analytics
  • Architecture
  • Engineering/Development
  • Security
ioti.com

Security


Thinkstock

Health care

Why IoT Security Issues Still Loom Large in Health Care

According to recent research from IoT security company Zingbox, health care organizations are wrestling with an array of IoT security issues.
  • Written by Brian Buntz
  • 20th March 2018

In one perspective, IoT devices are the inverse of traditional IT devices such as desktops, laptops, mobile phones and the like. Such people-facing devices are generic in their intended function but are architecturally similar. IoT devices, conversely, are diverse architecturally but tend to be function-built for a narrow outcome. While IoT devices often support human input, their main purpose is to act autonomously. Many IoT devices thus lack the horsepower to support software agents to help automate device security. And yet, because IoT devices interface with the physical world, IoT security issues can potentially cause physical harm. 

In few places is this unique combination of traits and risks more evident than in the medical device industry, where bad actors can potentially take control over devices ranging from infusion pumps to pacemakers to X-ray machines. Making matters worse, a recent survey of 50 hospitals from IoT-focused health care-security specialist Zingbox reveals that sloppy security is standard in the landscape. Outdated operating systems and software comprised one-third of the security problems found. Rogue applications and internet-browser-related risks jointly made up 41 percent of the security risk the study authors reported. Unprotected communications and weak passwords comprised an additional 11 percent.   

“There is certainly an opportunity to educate employees on the acceptable and secure way of using medical devices,” said John Yun, head of marketing at Zingbox. Just because an internet-connected medical device has a browser, “doesn’t mean you should use it to visit websites, check emails, stream music, etc.” Yun said. And while hospitals typically have security protocols in place for devices such as PCs and laptops, many aren’t focused on IoT security issues. “From our findings, the vast majority of user practice issues stem from employees unaware of sound security practices and not from intentional acts to infect or disable connected medical devices.” 

[Internet of Things World addresses the security concerns for IoT implementation in every vertical, attracting senior security professionals from the world’s biggest organizations. Get your tickets and free expo passes now.] 

The less-than-stellar security situation can attract financially-motivated cybercriminals who seek to steal patient records. Hospitals suffering from such theft can be hit with fines based on each record lost. “Disruption of service cannot be easily quantified since it has other damages such as loss of life,” Yun said.

Health care organizations should increase their focus on security as medical devices become increasingly connected. Once a medical device is reachable via the internet, there are an array of potential hazards to watch out for, as well as the chance that malware could propagate from one device to another, Yun said. “In addition, the management of devices has not evolved to leverage other benefits of networking such as updating real-time inventory, locating devices, gaining insight into device utilizations and so on,” he added.


Health care institutions should also ensure that connected medical devices have the latest software. “Many devices simply aren’t designed to be updated OTA,” Yun said. “Not only that, many manufacturers are not able to respond to vulnerabilities and threats in the speed necessary to secure such devices in real-time.” For one thing, any update of a critical medical device must ensure that it doesn’t cause inadvertent problems that may inadvertently harm a patient. Yun concluded: “Simply updating to the latest patch may be a risk we take with our PCs, but not our X-ray machines.” Imaging systems, incidentally, are the top source of cybersecurity risks within hospitals, making up 51 percent of such threats according to the Zingbox research.

And while there is room for improvement when it comes to the IoT security issues in the medical landscape, health care organizations have the potential to emerge as IoT security pioneers in the wake of last year’s high-profile cyberattacks targeting hospitals internationally. “Health care organizations have experience in being audited, held to specific regulations and securing health care records,” Yun explained, all of which could help them build on their current security foundation. “They also have budget and processes in place to implement solutions to react to the latest cyberthreats and service disruptions.”

Tags: Article Health Care Security Technologies Vertical Industries

Related


  • security
    Iranian Hackers Expected to React to U.S. Exit of Nuclear Deal
    The 2010 Stuxnet attack against Iran has become a prime example of an IoT attack. Now that the U.S. has exited the Iranian nuclear deal, retaliation is likely.
  • Illustration of factory machine with robotic arm and wireless connections
    Three Industrie 4.0 Hurdles and How Cisco Is Addressing Them
    A Cisco executive highlights the company’s latest thinking around Industrie 4.0 and its strategy for accelerating IIoT adoption.
  • IoT
    Digi-Key: Holistic Approach Needed to Be an IoT Distributor
    Digi-Key’s director of IoT business development explains why being an IoT distributor requires focusing on the connections between more than just devices. 
  • Stock volatility
    IoT Cybersecurity Problems Could Increase Stock Volatility
    Public companies with lax IoT cybersecurity could potentially attract the ire of investors and government authorities.

Leave a comment Cancel reply

-or-

Log in with your IoT World Today account

Alternatively, post a comment by completing the form below:

Your email address will not be published. Required fields are marked *

Related Content

  • 5 Questions to Help You Cut Through Blockchain Hype
  • 10 Ways to Support IoT Device Security in the Enterprise
  • Three Ways to Lead the IoT Revolution in Health Care
  • Trustonic Takes on IoT security with Holograms, Blockchain

News


How IIoT Can Fuel Business Model Disruption

31st January 2019

IoT World Announces the First Annual IoT World Awards

25th January 2019

Linux Foundation Creates Umbrella Group for Edge Computing

  • 1
24th January 2019
view all

White Papers


Sponsored Content

eBook: Transforming Manufacturing For Growth: Gaining a Competitive Advantage With IoT

13th February 2019
Sponsored Content

Digital Transformation: Moving from Preventive to Predictive Maintenance Models in Transportation, Field, and Industrial Environments

27th December 2018
view all

Special Reports


Making Sense of 12 Smart Building Technologies

26th December 2018
view all

Galleries


5 Considerations Before Flying Taxis Take Flight

28th January 2019

IoT Predictions for 2019: Less Hype, More Pragmatism

  • 1
12th December 2018
view all

Industry Perspectives


Sponsored Content

McObject wins IoT Vendor of the Year

1st December 2018
Sponsored Content

IoT is Changing our Lives: An Interview with Piotr Zajac, CEO, Untitled Kingdom

  • 1
9th May 2018
view all

Events


Data Center World

19th March 2019 - 22nd March 2019
Phoenix Convention Center, AZ

Container World

17th April 2019 - 19th April 2019
Santa Clara Convention Center, CA

Internet of Things World

13th May 2019 - 16th May 2019
Santa Clara Convention Center, CA

IoT World Europe

12th June 2019 - 13th June 2019
ExCel, London

Smart Cities Summit

31st October 2019 - 1st November 2019
Sheraton, Atlanta, GA

Industrial IoT World

31st October 2019 - 1st November 2019
Sheraton, Atlanta, GA
view all

Twitter


IoTWorldToday

The sprawling #IoT market has had more than 10 years to establish standards and best practices to move it forward.… twitter.com/i/web/status/1…

20th February 2019
IoTWorldToday

Until fairly recently, it seemed like relatively few industrial organizations suffered #cyberbreaches, see how it's… twitter.com/i/web/status/1…

19th February 2019
IoTWorldToday

Trusted #PlatformModules are poorly understood by many, well understood by few --> bit.ly/2GwmypT #IoTSecurity

19th February 2019
IoTWorldToday

The Impact of #IoT and #AI in the health care field --> bit.ly/2EcgQqF

15th February 2019
IoTWorldToday

Get your free pass to the world's largest #IoT exhibition → spr.ly/6019ErSm3 Join 12,500+ like-minded profe… twitter.com/i/web/status/1…

13th February 2019
IoTWorldToday

#IoT and #machinelearning in the retail industry --> bit.ly/2E6CnkJ #onlineshopping #ecommerce #AI bit.ly/2E5DgtV

12th February 2019
IoTWorldToday

Emerging technologies such as #AI and #IoT offer “endless” possibilities for industrial companies--> bit.ly/2teZYcx

8th February 2019
IoTWorldToday

RT @Nerdery: “A lot of innovators are trying to innovate on top of, but not with the healthcare value chain.” Director of Strategy @taqee h…

8th February 2019

Newsletter

Sign up for IoT World Today newsletters: vertical industry coverage on Tuesdays and horizontal tech coverage on Thursdays.

Special Reports

Our Special Reports take an in-depth look at key topics within the IoT space. Download our latest reports.

Business Resources

Find the latest white papers and other resources from selected vendors.

Media Kit and Advertising

Want to reach our audience? Access our media kit.

IoT World Today

© IoT World Today 2019. All rights reserved.

  • About Us
  • Contact
  • Cookies Policy
  • Privacy Statement
  • Terms of Service

Follow us

Websites are now required by law to gain your consent before applying cookies. We use cookies to improve your browsing experience. Parts of the website may not work as expected without them. By closing or ignoring this message, you are consenting to our use of cookies.
X