FDA Disconnects Contec: Medical Monitors Can’t Handle the Net
The FDA urges disconnecting Contec medical monitors from the internet due to vulnerabilities allowing remote code execution and data exfiltration. Despite no reported incidents, the devices could be exploited, so unplugging and disabling Wi-Fi is recommended. Meanwhile, Dell, MGM, and others also face cybersecurity challenges this week.
Hot Take:
Contec’s patient monitors have become the equivalent of medical-grade Swiss cheese, and while the FDA’s unplug-and-play advice is sound, one can’t help but imagine hackers rubbing their hands like cartoon villains. As for MGM, they’ve decided $45 million is the cost of being the world’s most secure slot machine. Meanwhile, AWS is playing the overprotective parent, locking down Redshift like a teenager’s diary. And just when you thought it was safe to open your emails, Talos discovers a new .NET backdoor that makes inboxes feel like haunted houses. Is this a cybersecurity horror film, or just another week in the digital world? You decide.
Key Points:
- The FDA warns healthcare providers to disconnect Contec patient monitors due to major vulnerabilities.
- MGM settles multiple data breach lawsuits with a $45 million fund.
- Amazon updates Redshift defaults to enhance security, limiting public access and enforcing encryption.
- Cisco Talos uncovers a phishing campaign targeting Windows users with a new .NET backdoor.
- Connecticut healthcare nonprofit CHC suffers a data breach affecting over a million people.