Threat Report

What this could mean for your clinical network and what you can do to mitigate the risks Type 1 Font Parsing Remote Code Execution Vulnerabilities On March 23, Microsoft issued an Advisory on two critical remote code execution (RCE) vulnerabilities... Read More

A collection of Bluetooth-related vulnerabilities, dubbed SweynTooth, could put a number of medical devices at risk. This blog provides information designed to help healthcare delivery organizations understand the risks posed by SweynTooth and determine how best to mitigate their exposure... Read More

How to Mitigate Your Organization’s Exposure with Medigate On February 4th of this year, Becton Dickinson (BD)/CareFusion 303 issued a “Medical Device Recall Notification” to address “specific software issues with the BD Alaris System™ System Infusion Pumps. March 6th, the... Read More

Microsoft recently issued a patch to address a new critical vulnerability that, if exploited, could enable an attacker to trick users into downloading a malicious executable or conduct a man-in-the-middle (MitM) attack. The vulnerability, called Curveball (CVE-2020-0601), was initially disclosed... Read More

After the disclosure of BlueKeep in May and SACK Panic in June, July almost passed without a major operating system vulnerability. Following Windows and Linux, this time VxWorks operating systems are under the spotlight, with eleven vulnerabilities announced by the... Read More

One month after BlueKeep, another major operating system vulnerability has been discovered this week, this time in the Linux kernel. In its security advisory, Netflix described four vulnerabilities in the way the kernel handles TCP networking. The most severe one... Read More

It’s been almost two years to the day (May 12, 2017) when WannaCry struck networks around the world. It’s a not-so-happy anniversary for healthcare, but it was the event that precipitated the founding of Medigate. Fast forward two years to... Read More