Masimo Told SEC Hack Affects On-Premises Systems, Operations, and Distribution
While Masimo has not publicly stated the exact nature of the incident, given the disruption to manufacturing and order fulfillment, the attack potentially could involve ransomware, data exfiltration or a targeted intrusion aimed at operational disruption, said Phil Englert, vice president of medical devices at the Health Information Sharing and Analysis Center (Health-ISAC).
“It is not uncommon for interruptions in business functions to impact operational capabilities” of medical gear manufacturers, Englert said.
“Artivion, a major manufacturer of heart surgery devices, was crippled by a ransomware attack in November 2024 that encrypted files and exfiltrated data. The incident disrupted order processing and shipping, forcing the company to take several systems offline,” he said.
In July 2023, BioHealth, a manufacturer of insulin pumps, was hit by ransomware, leading to the encryption of its entire network, including research and development data, he said. “The attack halted production and distribution, causing shortages of insulin pumps in multiple markets.”
Healthcare sector organizations often utilize just-in-time sourcing to improve efficiencies, he said. In case of disruptive incidents such as cyberattacks, these companies should plan in advance, he said.
“Manufacturers supporting critical infrastructure can maintain resilience by implementing robust supply chain security measures, diversifying suppliers and ensuring strategic stockpiles of essential components,” he said.
Read the full article in Data Breach Today. Click Here
