image credit: Wikimedia

FDA warns industry of cybersecurity vulnerabilities

Referred to as URGENT/11, these flaws exist in third-party software called IPnet, which computers use to communicate over a network.

The faults in the system could allow a remote attacker to take over and interfere with the function of medical devices and hospital networks. Once they have control of the device, the attacker may change its function through denial of service, information leaks and logical flaws. This could stop devices from functioning properly, or at all.

URGENT/11 affects several operating systems that may impact medical devices connected to a communications network, such as WiFi or ethernet, as well as connected equipment such as routers, connected phones and other critical infrastructure equipment.