Health-ISAC Medical Device Security Blog – April, 2024

Remote Access into the Medical Device Environment
Understanding the Landscape and Mitigating Risks
Access the full blog TechNation by Phil Englert, Health-ISAC’s VP of Medical Device Security Here:
April 1, 2024
Remote access in the health care and medical device environment refers to the capability of accessing and managing medical systems, devices and data from a location outside of the physical premises. As more and more medical device types become interoperable, the desire by manufacturers to leverage remote access to improve reliability, reduce costs and enhance customer service has become commonplace.
This ecosystem of services encompasses various functionalities such as remote software updates, diagnosis, repair, assistance, training, proactive monitoring and predictive maintenance. However, remote access also introduces a plethora of risks and challenges, particularly concerning security and compliance.
One of the primary challenges associated with remote access is the lack of established protocols and standards. With numerous means and methods utilized for remote access, there is a pressing need for comprehensive policies to govern these activities and control ad-hoc methods effectively. Additionally, unsecured networks pose significant threats, potentially allowing malicious actors to infiltrate the health care provider’s infrastructure and the remote technician’s system.
Continue reading the blog here:
- Related Resources & News
- Health-ISAC whitepaper highlights cybersecurity responsibilities in medical device lifecycle, focuses on resilience
- Health-ISAC Hacking Healthcare 2-3-2025
- Exploring the Cybersecurity Roles of Manufacturers and Healthcare Organizations During the Medical Device Lifecycle
- Impacts of Proposed US Import Tariffs on the Global Health Sector
- NY Blood Center Attack Disrupts Suppliers in Several States
- 2025 Newsletter – February
- DeepSeek’s Security Risk Is A Critical Reminder For CIOs
- $6.4m to combat health sector cyber threat
- Threat Bulletin: SimpleHelp RMM Software Leveraged in Exploitation Attempt to Breach Networks
- EU Commission Calls for Health Sector ‘Cyber Action Plan’