skip to content
Decrypt LOL

Get Cyber-Smart in Just 5 Minutes a Week

Decrypt delivers quick and insightful updates on cybersecurity. No spam, no data sharing—just the info you need to stay secure.

Read the latest edition

Backdoor Vulnerability Found in Healthcare Patient Monitors

/ 1 min read

🩺🔓 CISA warns of backdoor in Contec CMS8000 patient monitors. The US Cybersecurity and Infrastructure Security Agency (CISA) has identified a backdoor in Contec CMS8000 healthcare devices that transmits patient data to a hard-coded IP address associated with a Chinese university. Discovered by an external researcher, the vulnerability allows remote execution of commands and file transfers, compromising patient privacy and device integrity. Despite attempts by Contec to provide firmware updates, the malicious code persists, prompting CISA to recommend that healthcare organizations disconnect these devices from their networks. The agency also advises monitoring for signs of tampering, as the devices send sensitive patient information without proper logging or alerting mechanisms.

Source
{entry.data.source.title}
Original