When you step back and consider the patient journey in today’s healthcare environments, vulnerable clinical use assets are everywhere. Starting in admissions, patients encounter everything from check-in kiosks and tablets to copiers and scanners to security cameras.
During treatment, the vulnerable connected assets can range from CT/MRI scanners, and wireless patient monitors to the pneumatic tube systems used in lab specimen transport and even building management systems regulating operating room environments. During post-treatment care, all kinds of smart devices, including virtual assistants and TVs, come into play. Advances in patient care innovation have also extended the asset ecosystem beyond facilities, including remote wellness and chronic disease monitoring devices.
A multilayered security challenge
It’s indisputable that connected medical devices and IoMT, IoT, and other smart assets are essential to improving and innovating patient care. Still, they also pose security risks and management challenges on multiple levels.
Prioritizing IoMT security, cyber asset visibility
The problem is that inconsistent medical, IoMT, and IoT asset security makes healthcare delivery organizations ideal targets for attackers. And without the ability to fully visualize the asset landscape and identify and respond to emerging risks and threats in real-time, the patient journey is full of critical vulnerabilities. Here’s why complete cyber asset visibility needs to be a top priority.
At least 50% of devices in most healthcare delivery organizations are unmanaged or IoT assets that don’t support security agents.
Upwards of 63% of organizations dealt with one or more security incidents related to unmanaged and IoT devices.
Attackers covet medical records because they contain a wealth of information for identity theft. More than 40 million patient records were compromised in 2021 alone.
Ransomware remains pervasive in healthcare, jeopardizing patient care while potentially costing hospitals millions in payouts and reputational damage.
Cyber-physical attacks on things like smart uninterruptible power supplies (UPS) and building management system devices pose risks to patients and facilities.
Oscar Miranda, field chief technology officer for Healthcare at Armis, wrote this article.