{"id":90697,"date":"2024-10-23T09:59:33","date_gmt":"2024-10-23T16:59:33","guid":{"rendered":"https:\/\/forescoutstage.wpengine.com\/research-labs\/draytek-dray-break-copy\/"},"modified":"2025-02-10T10:41:10","modified_gmt":"2025-02-10T18:41:10","slug":"risk-of-connected-medical-devices","status":"publish","type":"page","link":"https:\/\/www.forescout.com\/research-labs\/risk-of-connected-medical-devices\/","title":{"rendered":"Unveiling the Persistent Risk of IoMT"},"content":{"rendered":"

Unveiling the Persistent Risk of Connected Medical Devices<\/h1>\n

Ransomware has been wreaking havoc in 2024. If networks at hospitals are shut down, patients suffer. Life-saving surgeries are postponed. Patient monitoring returns to pen and paper. Insurance approvals and billing systems become inoperative.<\/p>\n

Hospitals manage an ever-expanding range of assets and vendors. We\u2019ve been tracking the volume of medical devices with internet exposure and known vulnerabilities since 2017. Today, 80% of data breaches are caused by hacking \u2014 with 1.6 data breaches per day. See our research using a dataset from 2 million assets across 45 distinct healthcare delivery organizations.<\/p>\n

\u00a0<\/p>\n

Register for Webinar Get The Report<\/p>\n

\u00a0<\/p>\n

<\/p>\n

\n110<\/h3>\n

Unique OS<\/p>\n

<\/p>\n

\n300+<\/h3>\n

Unique vendors<\/p>\n

<\/p>\n

\n286%<\/h3>\n

DICOM exposure growthsince 2017<\/p>\n

<\/p>\n

\n20\/s<\/h3>\n

Attacks<\/p>\n

\n<\/figure>\n

The Asset Intelligence You Need to Isolate Persistent IoMT Risk <\/h2>\n

Get a deeper understanding of the insecure state of hospitals and clinics from the perspective of asset risk. Where is it? What can you do about it? Join Rich DeFabritus, Director of Product Marketing, Healthcare and Risk and Management Exposure as he examines the most important risk factors and takeaways from our IoMT research.<\/p>\n

watch Now<\/a><\/p>\n

<\/p>\n

Get The Report<\/a><\/p>\n

<\/p>\n

Most Popular IoMT Devices<\/h2>\n

The most popular device functions \u2013 communication systems and healthcare workstations \u2013 are not directly connected to patients. They provide critical healthcare functions, such as emergency alerts, communication, processing, and storing of patient data. <\/p>\n

Patient monitors and infusion pumps \u2013 connected directly to patients \u2013 represent 25% of devices. The remaining 25% is divided into the 84 other functions including imaging systems, lab equipment and specialized equipment, such as pneumatic tube systems. <\/p>\n

<\/p>\n

Most Popular Vendors<\/h2>\n

The vendor landscape is incredibly fragmented. Well-known names, such as Philips, GE, Roche and Baxter are among the top 10 most popular vendors. Yet, the \u2018Others\u2019 category comprises a staggering 60% of vendors meaning third-party risk management is incredibly challenging \u2013 especially with 110 unique operating systems.<\/p>\n

Read The Blog<\/a><\/p>\n

Exposed Devices Running DICOM by Country<\/h2>\n

DICOM is widely used with picture archiving assets or PACS. Our honeypot captured 23,000 interactions with DICOM by attackers. And as you can see, we\u2019ve been watching the internet exposed\u00a0 DICOM closely. Since 2017, the exposure of DICOM to the internet has grown by 286% \u2014 with the highest concentration in the US.<\/p>\n

<\/a><\/p>\n

Dive Into the Research <\/h2>\n

Get all the data and nuanced analysis including:
\n\u00a0\n