DHS Issues Cyber Alert for Siemens Medical Devices | Healthcare Informatics Magazine | Health IT | Information Technology Skip to content Skip to navigation

DHS Issues Cyber Alert for Siemens Medical Devices

August 7, 2017
by Heather Landi
| Reprints

The Department of Homeland Security issued an advisory Friday after Siemens identified four vulnerabilities in its Molecular Imaging products running on Windows 7.

Munich, Germany-based Siemens is preparing updates for the affected products, which are used in medical imaging, according to the advisory.

DHS reports in the report that these vulnerabilities could be exploited remotely, and an unauthenticated remote attacker could execute arbitrary code by sending crafted HTTP requests to the Microsoft web server of affected devices. Exploits that target these vulnerabilities are known to be publicly available.

Siemens reports that the vulnerabilities affect the following products: Siemens PET/CT Systems: All Windows 7-based versions; Siemens SPECT/CT Systems: All Windows 7-based versions; Siemens SPECT Systems: All Windows 7-based versions, and Siemens SPECT Workplaces/Symbia.net: All Windows 7-based versions.

Siemens is working on updates for the affected products, but is recommending organizations take precautions, such as protecting network access to the Molecular Imaging products with appropriate mechanisms. The company also recommends that users have appropriate backups and system restoration procedures.

Get the latest information on Health IT and attend other valuable sessions at this two-day Summit providing healthcare leaders with educational content, insightful debate and dialogue on the future of healthcare and technology.

Learn More

Topics

News

Survey: Infrastructure, Interoperability Key Barriers to Global HIT Development

A new survey report from Black Book Research on global healthcare IT adoption and records systems connectivity finds nations in various phases of regional electronic health record (EHR) adoption. The survey results also reveal rapidly advancing opportunities for U.S.-based and local technology vendors.

Penn Medicine Opens Up Telehealth Hub

Philadelphia-based Penn Medicine has opened its Center for Connected Care to centralize the health system’s telemedicine activities.

Roche to Pay $1.9B for Flatiron Health

Switzerland-based pharmaceutical company Roche has agreed to pay $1.9 billion to buy New York-based Flatiron Health Inc., which has both an oncology EHR and data analytics platform.

Financial Exec Survey: Interoperability Key Obstacle to Value-Based Payment Models

Momentum continues to grow for value-based care as nearly three-quarters of healthcare executives report their organizations have achieved positive financial results from value-based payment programs, to date, according to a new study from the Healthcare Financial Management Association (HFMA).

Cerner, Children's National to Help UAE Pediatric Center with Health IT

Al Jalila Children's Specialty Hospital, the only pediatric hospital in the United Arab Emirates, has entered into an agreement with Washington, D.C.-based Children's National Health System to form a health IT strategic partnership.

Telemedicine Association Names New CEO

The American Telemedicine Association (ATA) has named Ann Mond Johnson its new CEO, replacing Jon Linkous who stepped down suddenly last August after 24 years as the organization’s CEO.