Securing Connected Hospitals: A Research on Exposed Medical Systems and Supply Chain Risks
Common Information
| Type | Value |
|---|---|
| UUID | d7acb95e-67f7-4fa3-85ee-718b0cab6119 |
| Fingerprint | 04c8a99fefe8717b6d10715be1d6bcfbac15402ad037448951f32362f5200f8a |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | April 4, 2018, 5:55 p.m. |
| Added to db | April 14, 2024, 10:37 a.m. |
| Last updated | Aug. 30, 2024, 10:49 p.m. |
| Headline | Securing Connected Hospitals: A Research on Exposed Medical Systems and Supply Chain Risks |
| Title | Securing Connected Hospitals: A Research on Exposed Medical Systems and Supply Chain Risks |
| Detected Hints/Tags/Attributes | 279/4/200 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Url | 1 | https://medlineplus.gov |
|
| Details | Url | 1 | http://www.med |
|
| Details | Url | 1 | http://www.ttp |
|
| Details | Url | 1 | https://www.ncbi.nlm.nih |
|
| Details | Url | 1 | http://searchhealthit.techtarget.com/definition/radiology-information-system-ris. |
|
| Details | Url | 1 | http://searchhealthit.techtarget.com/definition/picture-archiving-and-communication-system-pacs. |
|
| Details | Domain | 58 | www.shodan.io |
|
| Details | Domain | 3 | images.shodan.io |
|
| Details | Domain | 1 | accessgudid.nlm.nih.gov |
|
| Details | Domain | 18 | www.telegraph.co.uk |
|
| Details | Domain | 151 | www.bbc.com |
|
| Details | Domain | 5 | www.bbc |
|
| Details | Domain | 202 | krebsonsecurity.com |
|
| Details | Domain | 54 | www.csoonline.com |
|
| Details | Domain | 133 | www.infosecurity-magazine.com |
|
| Details | Domain | 1 | marketing.protenus.com |
|
| Details | Domain | 1 | apps.who.int |
|
| Details | Domain | 44 | www.bloomberg.com |
|
| Details | Domain | 39 | ics-cert.us-cert.gov |
|
| Details | Domain | 7 | infosecinstitute.com |
|
| Details | Domain | 132 | trendmicro.com |
|
| Details | Domain | 604 | www.trendmicro.com |
|
| Details | Domain | 39 | www.theverge.com |
|
| Details | Domain | 17 | www.nbcnews.com |
|
| Details | Domain | 15 | www.healthcareitnews.com |
|
| Details | Domain | 145 | threatpost.com |
|
| Details | Domain | 101 | www.theregister.co.uk |
|
| Details | Domain | 73 | databreaches.net |
|
| Details | Domain | 25 | www.databreaches.net |
|
| Details | Domain | 30 | fortune.com |
|
| Details | Domain | 9 | www.privacyrights.org |
|
| Details | Domain | 138 | www.darkreading.com |
|
| Details | Domain | 35 | www.vice.com |
|
| Details | Domain | 7 | leanpub.com |
|
| Details | Domain | 2 | www.dicomstandard.org |
|
| Details | Domain | 89 | arstechnica.com |
|
| Details | Domain | 5 | www.cs.bu.edu |
|
| Details | Domain | 68 | tools.ietf.org |
|
| Details | Domain | 3 | support.microsoft |
|
| Details | Domain | 177 | blog.trendmicro.com |
|
| Details | Domain | 1 | upnp.org |
|
| Details | Domain | 368 | microsoft.com |
|
| Details | Domain | 29 | www.techrepublic.com |
|
| Details | Domain | 2 | www.bacnet.org |
|
| Details | Domain | 2 | www.tridium.com |
|
| Details | Domain | 3 | literature.rockwellautomation.com |
|
| Details | Domain | 6 | healthit.gov |
|
| Details | Domain | 5490 | nist.gov |
|
| Details | Domain | 1 | nih.gov |
|
| Details | Domain | 70 | nakedsecurity.sophos.com |
|
| Details | Domain | 1 | docbookmd.com |
|
| Details | Domain | 3 | www.fiercehealthcare.com |
|
| Details | Domain | 1 | codifiedsecurity.com |
|
| Details | Domain | 11 | www.ibtimes.co.uk |
|
| Details | Domain | 2 | cleveland.com |
|
| Details | Domain | 2 | www.cleveland.com |
|
| Details | Domain | 1 | www.tampabay.com |
|
| Details | Domain | 35 | resources.infosecinstitute.com |
|
| Details | Domain | 1 | www.tehachapinews.com |
|
| Details | Url | 1 | https://www.policymedical.com/best-practices-clinical-order-set-management-hospitals/. |
|
| Details | Url | 1 | http://www.himss.org |
|
| Details | Url | 1 | http://apps.who.int/iris/bitstream/10665/44561/1/9789241501392_eng.pdf |
|
| Details | Domain | 1 | www.calhospital.org |
|
| Details | Domain | 14 | www.hipaajournal.com |
|
| Details | Domain | 31 | www.pcworld.com |
|
| Details | Domain | 16 | scadahacker.com |
|
| Details | Domain | 201 | msdn.microsoft.com |
|
| Details | Domain | 1 | content.datica.com |
|
| Details | Domain | 13 | www.trendmicro.de |
|
| Details | Domain | 1 | nccoe.nist.gov |
|
| Details | Domain | 175 | www.zdnet.com |
|
| Details | Domain | 1 | www.mayoclinic.org |
|
| Details | Domain | 1 | blog.iatric.com |
|
| Details | Domain | 1 | mayoclinic.org |
|
| Details | Domain | 1 | infuserveamerica.com |
|
| Details | Domain | 8 | www.fda.gov |
|
| Details | Domain | 1 | www.nhlbi.nih.gov |
|
| Details | Domain | 1 | www.news-medical.net |
|
| Details | Domain | 1 | www.kidney.org |
|
| Details | Domain | 3 | medlineplus.gov |
|
| Details | Domain | 1 | www.varian.com |
|
| Details | Domain | 1 | www.med |
|
| Details | Domain | 1 | searchhealthit.techtarget.com |
|
| Details | Domain | 1 | www.mapcon.com |
|
| Details | Domain | 1 | www.policymedical.com |
|
| Details | Domain | 3 | www.himss.org |
|
| Details | Domain | 1 | www.cornell.com |
|
| Details | Domain | 2 | www.trendmicro.it |
|
| Details | Domain | 1 | downloads.siemens.com |
|
| Details | Domain | 1 | www.waspbarcode.com |
|
| Details | Domain | 14 | www.ncbi.nlm.nih.gov |
|
| Details | Domain | 1 | www.explainthatstuff.com |
|
| Details | Domain | 1 | www.hitrustalliance.net |
|
| Details | File | 252 | www.cs |
|
| Details | File | 1 | the-opm-breach-report-a-long-time-coming.html |
|
| Details | File | 384 | www.inf |
|
| Details | File | 1 | net_full_ba_report.pdf |
|
| Details | File | 104 | www.dat |
|
| Details | File | 8 | www.dic |
|
| Details | File | 4 | ntpattack.pdf |
|
| Details | File | 1 | rfc959.html |
|
| Details | File | 33 | 1.pdf |
|
| Details | File | 9 | 10%29.aspx |
|
| Details | File | 2 | hpac-3-97.html |
|
| Details | File | 1 | 1785-um001_-en-p.pdf |
|
| Details | File | 1 | draft-2_framework-v1-1_without-markup.pdf |
|
| Details | File | 1 | whitepaper_mobilehealthhipaa.pdf |
|
| Details | File | 1 | million_fo.html |
|
| Details | File | 36 | resources.inf |
|
| Details | File | 1 | article_875d2a22-4253-11e7-9162-5b5d79529238.html |
|
| Details | File | 7 | article.html |
|
| Details | File | 4 | howto-threatmodeling.html |
|
| Details | File | 3 | aa302419.aspx |
|
| Details | File | 2 | content.dat |
|
| Details | File | 5 | wp-defending-against-pos-ram-scrapers.pdf |
|
| Details | File | 1 | ucm115910.htm |
|
| Details | File | 1 | 007339.htm |
|
| Details | File | 1 | 9789241501392_eng.pdf |
|
| Details | File | 1 | leaking-beeps-whitepaper-en.pdf |
|
| Details | File | 1 | downloads.sie |
|
| Details | File | 15 | download.aspx |
|
| Details | File | 1 | pneumatic-tube-transport.html |
|
| Details | Url | 14 | https://www.shodan.io |
|
| Details | Url | 3 | https://images.shodan.io |
|
| Details | Url | 1 | https://accessgudid.nlm.nih.gov/).44 |
|
| Details | Url | 1 | http://www.telegraph.co.uk/news/2017/05/13/nhs-cyber-attack- |
|
| Details | Url | 1 | http://www.bbc.com/news/live/39901370. |
|
| Details | Url | 1 | http://www.bbc.com/news/av/uk-39900677/nhs-cyber-attack-my-heart-surgery-was-cancelled. |
|
| Details | Url | 4 | http://www.bbc |
|
| Details | Url | 1 | https://krebsonsecurity.com/2014/02/target-hackers-broke-in-via-hvac-company/. |
|
| Details | Url | 1 | https://www.csoonline.com/article/3130682/data-breach/the-opm-breach-report-a-long-time-coming.html |
|
| Details | Url | 1 | https://www.infosecurity-magazine.com/news/home-depot-breach-third- |
|
| Details | Url | 1 | http://apps.who.int/gho/data/view.main.sdg2016lexregv?lang=en |
|
| Details | Url | 1 | https://www.bloomberg.com/news/articles/2015-02-05/signs-of- |
|
| Details | Url | 1 | https://ics-cert.us-cert.gov/content/cyber-threat-source-descriptions. |
|
| Details | Url | 1 | https://www.trendmicro.com/vinfo/us/security/definition/business-email-compromise- |
|
| Details | Url | 2 | https://www.trendmicro.com/vinfo/au/security/definition/distributed-denial-of-service-ddos. |
|
| Details | Url | 1 | https://www.theverge.com/2017/8/30/16230048/fda-abbott-pacemakers-firmware- |
|
| Details | Url | 1 | https://www.nbcnews.com/news/us-news/medstar-hospitals-recovering-after-ransomware- |
|
| Details | Url | 1 | http://www.healthcareitnews.com/news/keylogger-hack-root-hipaa-breach. |
|
| Details | Url | 1 | https://threatpost.com/conficker-used-in-new-wave-of-hospital-iot-device-attacks/118985/. |
|
| Details | Url | 1 | https://www.theregister.co.uk/2016/11/22/healthcare_trojan/. |
|
| Details | Url | 1 | https://www.databreaches.net/ma-smart-physical-therapy-hacked-by-thedarkoverlord/. |
|
| Details | Url | 1 | http://fortune.com/2015/08/04/hackers-medical-devices/. |
|
| Details | Url | 1 | https://www.darkreading.com/endpoint/medjack3-poses-advanced-threat-to-hospital-devices/d/d- |
|
| Details | Url | 1 | https://www.vice.com/en_uk/article/9bvxmd/shodan-exposes-the-dark-side-of-the-net. |
|
| Details | Url | 3 | https://leanpub.com/shodan. |
|
| Details | Url | 1 | http://www.dicomstandard.org/. |
|
| Details | Url | 1 | http://arstechnica.com/security/2015/10/new-attacks-on-network-time-protocol-can- |
|
| Details | Url | 4 | http://www.cs.bu.edu/~goldbe/papers/ntpattack.pdf |
|
| Details | Url | 1 | https://tools.ietf.org/html |
|
| Details | Url | 1 | https://support.microsoft |
|
| Details | Url | 23 | http://blog.trendmicro.com/trendlabs- |
|
| Details | Url | 1 | http://upnp.org/specs/arch/upnp-arch-devicearchitecture-v1.1.pdf |
|
| Details | Url | 2 | http://www.techrepublic.com/article/lock-it-down-dont-allow-snmp-to-compromise-network- |
|
| Details | Url | 2 | http://www.bacnet.org/faq/hpac-3-97.html |
|
| Details | Url | 1 | https://www.tridium.com/en/products-services |
|
| Details | Url | 1 | http://literature.rockwellautomation.com/idc/groups/literature/documents/um/1785-um001_-en-p.pdf |
|
| Details | Url | 1 | https://accessgudid.nlm |
|
| Details | Url | 1 | https://www.barcode |
|
| Details | Url | 1 | http://www.politico.com/tipsheets/morning-ehealth/2016/08/fda-guidance-could-improve-cybersecurity-fbi-skeptical-of- |
|
| Details | Url | 1 | https://nakedsecurity.sophos.com/2015/05/05/bugs-in-the-hospital-how-to-pwn-your-own-pethidine- |
|
| Details | Url | 1 | https://ics-cert.us-cert.gov/alerts/ics-alert-13-164-01. |
|
| Details | Url | 1 | http://www.fiercehealthcare.com/mobile/report-fda-approved-mobile-health-apps-pose- |
|
| Details | Url | 1 | https://codifiedsecurity.com/mhealth-apps-are-a-priority-what-about-security/. |
|
| Details | Url | 1 | http://www.ibtimes.co.uk/amazon-selling-least-30-brands- |
|
| Details | Url | 1 | https://arstechnica.com/information-technology/2017/03/preinstalled-malware-targets- |
|
| Details | Url | 1 | http://www.healthcareitnews.com/news/american-dental-association-sends- |
|
| Details | Url | 1 | http://www.cleveland.com/consumeraffairs/index.ssf/2012/08/hireright_to_pay_26_ |
|
| Details | Url | 1 | http://www.fiercehealthcare.com/privacy-security/survey-hospital-it-execs-see- |
|
| Details | Url | 1 | http://www.tampabay.com/news/publicsafety/crime/feds-ids-stolen-from-tampa-er- |
|
| Details | Url | 1 | http://resources.infosecinstitute.com/insider-threats-at-hospitals/#gref |
|
| Details | Url | 1 | https://www.cornell.com |
|
| Details | Url | 1 | http://www.trendmicro.it/media/wp/leaking-beeps-whitepaper-en.pdf |
|
| Details | Url | 1 | http://www.waspbarcode.com/buzz/barcode-technology-healthcare/. |
|
| Details | Url | 1 | https://www.ncbi.nlm.nih.gov/pmc/articles/pmc2827025/. |
|
| Details | Url | 1 | http://www.explainthatstuff.com/pneumatic-tube-transport.html |
|
| Details | Url | 1 | http://www.tehachapinews.com/news/security-breach-leads-to-release-of- |
|
| Details | Url | 1 | https://www.databreaches.net/264000-and-counting-hack-of-ehremr- |
|
| Details | Url | 1 | http://blog.trendmicro.com/how-hackers-have-improved-their-bec-attack-methods/. |
|
| Details | Url | 1 | https://www.calhospital.org/cha-news-article/irs-warns-hospitals-w-2-phishing-scam. |
|
| Details | Url | 1 | https://www.databreaches.net/2016-w-2-data-up-for-sale-on-the-dark-web/. |
|
| Details | Url | 1 | https://www.hipaajournal.com/boyd-hospital-dispute-property-sale-6554/. |
|
| Details | Url | 1 | https://www.pcworld.com/article/167756/article.html |
|
| Details | Url | 1 | http://www.healthcareitnews.com/news/hackers-breach-third-party-cloud-vendor-teklinks. |
|
| Details | Url | 4 | https://scadahacker.com/howto/howto-threatmodeling.html |
|
| Details | Url | 2 | http://resources.infosecinstitute.com/qualitative-risk-analysis-dread-model/. |
|
| Details | Url | 1 | https://msdn.microsoft.com/en-us/library/aa302419.aspx |
|
| Details | Url | 1 | http://content.datica.com/hipaa-vs.-hitrust. |
|
| Details | Url | 1 | https://www.trendmicro.de/cloud-content/us/pdfs |
|
| Details | Url | 1 | https://nccoe.nist.gov |
|
| Details | Url | 1 | https://www.fda.gov/downloads/medicaldevices/deviceregulationandguidance/guidancedocuments/ucm482022. |
|
| Details | Url | 1 | http://www.zdnet.com/article/windows-xp-why-hospitals-are-still-using-microsofts- |
|
| Details | Url | 1 | http://www.mayoclinic.org |
|
| Details | Url | 1 | http://blog.iatric.com/medical-device-integration/smart-pump-programming-and-ehr- |
|
| Details | Url | 1 | https://www.fda.gov |
|
| Details | Url | 1 | https://www.nhlbi.nih.gov/health |
|
| Details | Url | 1 | https://www.news-medical.net/clinical-and-diagnostics/anesthesia-machines. |
|
| Details | Url | 1 | https://www.nhlbi |
|
| Details | Url | 1 | https://www.fda.gov/radiation- |