Our Blog

A collection of thoughts on medical device cybersecurity.
Follow us on Medium for updates.

The Need for Scientifically-Sound Cyber Risk Assessment

The Need for Scientifically-Sound Cyber Risk Assessment

As with all new technology with great promise, connectivity in medical devices comes with new risks. The medical device industry needs more sound, rigorous, and scalable methods to generate and use evidence of cybersecurity risk. Read more about the new approaches device manufacturers should consider.

Omnibus Act Impact on Medical Device Cybersecurity

Omnibus Act Impact on Medical Device Cybersecurity

On Dec 29, President Biden signed into law a $1.7 trillion omnibus spending bill that has significant implications for healthcare as well as for how security for medical devices are regulated and enforced. Manufacturers must now include evidence of security controls and security testing, as well as plans to maintain device’s security posture through updates and patches, all supported by documented evidence, e.g., a software bill of materials for commercial, open-source, and off-the-shelf software components.

I have an SBOM, now what?

I have an SBOM, now what?

SBOMs (Software Bill of Materials) have come into the spotlight in recent years, especially after the White House released the Cybersecurity Executive Order. As more organizations adopt standard operating procedures (SOPs) to generate SBOMs on a regular basis, what do you do once you have an SBOM? Read more to find out.

How Does Healthcare Cybersecurity Compare To Other Industries?

How Does Healthcare Cybersecurity Compare To Other Industries?

Cybersecurity used to be seen as a compliance initiative in healthcare but has become a patient safety and business imperative in recent years. For MDMs, tying market delays and metrics to a lack of security will inspire faster action. For HDOs, assessing strategies for incoming devices can start to shift the tide in how risks expand.

Healthcare providers lag behind in securing their most advanced devices

Healthcare providers lag behind in securing their most advanced devices

The core competency of healthcare is healthcare. Whether innovating new clinical treatments, enabling data sharing across a care team or discovering novel ways to enhance the quality of life, healthcare knows clinical care. The challenge faced in prioritizing medical device-based cybersecurity is that the buyers of medical devices haven’t been able to push for it as part of their purchase criteria.

Cryptography is Critical to Digital Health and Interoperability

Cryptography is Critical to Digital Health and Interoperability

Trust is a prerequisite for the interoperability of medical devices. Cryptography is the key to implementing trust. Healthcare needs purpose-built cryptography and certificate management, especially for medical devices.

We live and breathe healthcare cybersecurity

A medical device may look like just another IoT device, but regulatory constraints and their unique use case require a healthcare-first approach to cybersecurity. MedCrypt's solutions are built specifically for medical devices, which means clinical functionality, patient safety, and care delivery are always the highest priority.
Solutions