Manufacturers

Medigate Research Labs helps manufacturers deliver more secure products.

The Medigate Way

Coordinated Vulnerability Disclosure

We believe tighter cooperation between manufacturers and security researchers will improve product security. Our researches worked with leading manufacturers to disclose and mitigate vulnerabilities in various medical devices.

Read our whitepaper to learn more about our approach to coordinated vulnerability disclosure.

Download

Medical devices are hard to secure. Many devices were not developed with security as a priority. They cannot be patched or updated regularly to ensure continuity of service. They often rely on outdated operating systems. They are low-hanging fruit for cyber attackers. And when a vulnerability is discovered and exploited, manufacturers can be damaged just as much as providers.

Penetration testing

Medigate Research Labs studies numerous device vendors and proprietary device protocols and behaviors to compile our leading signature database and clinical alerts. We leverage our expertise and versatility to provide penetration testing services to manufacturers and improve their inherent security capabilities.

The Medigate Difference

Clinical Domain Expertise

We speak medical devices. Medigate is the only solution dedicated to medical device security. As such, we understand the problems concerning healthcare providers. We understand medical devices behavior and are used to work with proprietary device protocols. Our in-house lab simulates simulates real hospital settings and scenarios.

Holistic Approach

When we investigate, we do it all the way. Our pen-testing covers bare metal software, proprietary and commercial operating systems, network stack, clinical software and management interface (EG, web UI, telnet interface, on-screen controls).

Leading Working Standards

We work collaboratively with manufacturers to disclose and mitigate vulnerabilities efficiently and provide a working proof-of-concept for every vulnerability we find.

Philips and Medigate worked together to disclose and mitigate three vulnerabilities potentially putting Philips IntelliVue Patient Monitors, and Avalon Fetal/Maternal Monitors at risk of improper authentication, information exposure and stack-based buffer overflow.  Medigate was entered into the Philips Hall of Honors.

Security Week

Medigate identified and disclosed two vulnerabilities in Siemen’s RAPID- Lab® and RAPIDPoint® Blood Gas Analyzers. The first vulnerability allowed remote attackers with credentialed access to elevate privileges. Under the second vulnerability, a hardcoded password could allow attackers access to the device over port 5900/TCP.  Medigate was entered into the Siemens Hall of Thanks.

Security Advisory

Medigate identified cybersecurity vulnerabilities in Roche point-of-care handheld medical devices, including theAccu-Chek and CoaguChek.   The vulnerability could enable attachers to gain unauthorized access and to execute commands on the operating system.

 

Security Week

Contact us to discuss how we can make more secured products together

402 West Broadway
4th Floor Suite-1A
San Diego, CA 92101

54 W 40th Street
New York, NY. 10018
(908) 247-8302

        Privacy        Terms of Use

94 Yigal Alone St.
Building B, Floor 7
Tel Aviv, 6789139, Israel

 

WordPress Image Lightbox