The
#Contec #CMS8000 is a popular medical monitor that tracks a patient’s vital signs. In recent months, the FDA and CISA both warned about a “backdoor” in the device, an “easy-to-exploit vulnerability.
#MedicalEquipment #Cybersecurity https://buff.ly/4hUua3E
Chinese medical devices are in health systems across U.S., and the government and hospitals are worried
Chinese-made medical devices are found in almost every corner of the medical ecosystem, from hospitals to clinics, and the government is getting more concerned.
Do the CONTEC CMS8000 Patient Monitors Contain a Chinese Backdoor? The Reality is More Complicated…
Team82 investigated what CISA labeled a backdoor in the Contec CMS8000 patient monitoring system and concluded that instead, the decision to include a hardcoded IP address is instead an insecure and risky design choice on the part of the vendor.
WIESO wird eine HARTcodierte IP-Adresse verwendet? WER bindet so ein Gerät dann auch noch in sein Spitalnetzwerk ein?
Medizinischer Überwachungsmonitor: Hintertür in #Contec #CMS8000 entdeckt | Security https://www.heise.de/news/Medizinischer-Ueberwachungsmonitor-Hintertuer-in-Contec-CMS8000-entdeckt-10267466.html
Medizinischer Überwachungsmonitor: Hintertür in Contec CMS8000 entdeckt
Angreifer können medizinische Hardware von Contec attackieren. Dabei kann Schadcode auf Geräte gelangen. Bislang gibt es kein Sicherheitsupdate.
Contec CMS8000 patient monitors contain a hidden backdoor
The U.S. CISA and the FDA warned of a hidden backdoor in Contec CMS8000 and Epsimed MN-120 patient monitors.
#CISA is warning that Contec
#CMS8000 devices, a widely used healthcare patient monitoring device, include a backdoor that quietly sends patient data to a remote IP address and downloads and executes files on the device.
#China #backdoor https://www.bleepingcomputer.com/news/security/backdoor-found-in-two-healthcare-patient-monitors-linked-to-ip-in-china/ 
Backdoor found in two healthcare patient monitors, linked to IP in China
The US Cybersecurity and Infrastructure Security Agency (CISA) is warning that Contec CMS8000 devices, a widely used healthcare patient monitoring device, include a backdoor that quietly sends patient data to a remote IP address and downloads and executes files on the device.
Medizinische Überwachung: Backdoor in verbreiteten Patientenmonitoren entdeckt - Golem.de
Durch die Backdoor fließen nicht nur laufend Patientendaten nach China. Auch lassen sich die Geräte von dort aus vollständig kontrollieren.
Catherine Collingwood Estes
qbi
Marcel SIneM(S)US
securityaffairs
Anonymous 🐈️🐾☕🍵🏴🇵🇸 
