Security Meets Safety: Attacking Medical Devices and Infrastructures

Medical devices and infrastructures are vulnerable to cyber-attacks, which can have serious consequences for patients and healthcare providers. These attacks can take various forms, such as malware that disrupts device functionality, ransomware that locks access to data or systems until a ransom is paid, or supply chain attacks that insert malicious software into devices during the manufacturing process. This talk will give an overview of the medical sector threat landscape and explain the most common vulnerabilities affecting medical devices and infrastructures. We will then showcase some critical flaws discovered among IoMT devices and present some key points vendors should take into consideration when manufacturing these kinds of devices.