Software Integrity

Archive for the 'Medical Device Security' Category

 

Howard Schmidt, the United States’ First Cybersecurity Czar, Has Died

Howard A. Schmidt, a friend to many in the security community, has died. A statement on his Facebook page says that he died today “in the presence of his wife and four sons … following a long battle with cancer.” Schmidt served as the White House Cybersecurity Advisor to Presidents Barack Obama and George W. […]

Continue Reading...

Posted in Fuzz Testing, Government Security, Medical Device Security, Network Security, News, Software Security Testing | No Comments »

 

What to Look Forward to at the 2017 Medical Device Security 101 Conference

This year’s Medical Device Security 101 Conference is just days away. We’re looking forward to meeting attendees January 15-17 in sunny Lake Buena Vista, Florida. Identify, prevent, recover. We’d like to thank the University of Michigan’s Archimedes Center for Medical Device Security for hosting the two-day educational workshop. This synergistic environment explores how to identify, […]

Continue Reading...

Posted in Healthcare Security, Medical Device Security, Security Conference or Event | Comments Off on What to Look Forward to at the 2017 Medical Device Security 101 Conference

 

Philips Honors Synopsys Researcher with Responsible Disclosure Honor

On Wednesday, Philips named Mike Ahmadi, Global Director of Critical Systems Security for Synopsys Software Integrity Group, to its Responsible Disclosure Hall of Honors. Responsible Disclosure, also known as Coordinated Vulnerability Disclosure, means that the first reporter of a new vulnerability has chosen to work with the vendor to demonstrate the validity of the finding […]

Continue Reading...

Posted in Medical Device Security | Comments Off on Philips Honors Synopsys Researcher with Responsible Disclosure Honor

 

The Comedic Stylings of Dr. Kevin Fu

They say that laughter is the best medicine. Dr. Kevin Fu, one of the first security researchers to test medical devices, took to the stage at this year’s CodenomiCON for a short, standup comedy routine. Nothing was safe. Fu talked about himself and about recent politics. And of course he also made fun of cybersecurity. […]

Continue Reading...

Posted in Medical Device Security | Comments Off on The Comedic Stylings of Dr. Kevin Fu

 

The Digital Doctors Are In – Are You Covered?

Following recent vulnerabilities disclosed in medical devices, a panel of experts discussed current remediation efforts and steps toward developing industry best practices. On the CodenomiCON 2016 panel The Digital Doctors Are In – Are You Covered? moderated by Chenxi Wang, Chief Strategy Officer at Twistlock, security experts debated the challenges facing the healthcare and medical […]

Continue Reading...

Posted in Medical Device Security | Comments Off on The Digital Doctors Are In – Are You Covered?

 

AAMI TIR57 Recognized By The FDA As A Foundational Cybersecurity Standard For Medical Devices

It took a few years to make it happen, but the AAMI TIR57 “Principles for medical device security – Risk management” standard was finally published by AAMI this summer, and the FDA formally recognized it as a foundational standard less than a month after it came out. It really is no surprise that the FDA […]

Continue Reading...

Posted in Medical Device Security | Comments Off on AAMI TIR57 Recognized By The FDA As A Foundational Cybersecurity Standard For Medical Devices

 

CodenomiCON USA 2016

The sixth annual CodenomiCON USA 2016 attracted hundreds of security professionals for an evening of panel discussions and networking at the House of Blues in Mandalay Bay. The Master of Ceremonies for the night was Mike Ahamdi, Director of Critical Systems Security at Synopsys. He introduced each of the panels covering supply chain security, medical […]

Continue Reading...

Posted in Automotive Security, Internet of Things, Medical Device Security, Security Standards and Compliance | Comments Off on CodenomiCON USA 2016

 

Synopsys Finds 460 Software Vulnerabilities in Hospital Information System

On Thursday researchers Mike Ahmadi of Synopsys and Billy Rios of Whitescope disclosed 460 vulnerabilities in Philips Xper Connect, an optional bidirectional hospital information system (HIS) interface. 272 of these vulnerabilities they said are present in 5 software packages present in the Xper-IM Connect system software. 188 of the vulnerabilities are associated with Windows XP […]

Continue Reading...

Posted in Medical Device Security | Comments Off on Synopsys Finds 460 Software Vulnerabilities in Hospital Information System

 

CodenomiCON 2016 Brings Elite Hackers Together in Las Vegas

Once again Synopsys will host an elite group of cybersecurity professionals during Black Hat for an evening of thought leadership, networking, and entertainment. For the past half dozen years, CodenomiCONs have been held the evening before the start of the Black Hat briefings during the Black Hat conference. This year’s 8th annual CodenomiCON will be […]

Continue Reading...

Posted in Automotive Security, Internet of Things, Medical Device Security, Security Standards and Compliance | Comments Off on CodenomiCON 2016 Brings Elite Hackers Together in Las Vegas

 

VA to Adopt UL Cybersecurity Assurance Program

The U.S. Department of Veteran Affairs (VA) and UL (Underwriters Laboratories) have signed Cooperative Research and Development Agreement Program (CRADA) for medical devices cybersecurity standards and certification approaches. CRADA project will support improvement of Veterans patient safety and security through the use and verification of UL’s Cybersecurity Assurance Program (UL CAP), an independent third-party testing […]

Continue Reading...

Posted in Medical Device Security, Security Standards and Compliance | Comments Off on VA to Adopt UL Cybersecurity Assurance Program