Reading:
Medical device industry falling behind on cyber security
Share:
data breaches identified by

Data Leak Lawyers - Begin Your Data Breach Claim Today!

Sign-up to a data breach claim today - use our quick and easy form to begin your claim for thousands of pounds in compensation.

Start Your Claim
Your privacy is extremely important to us. Information on how we handle your data is in our Privacy Policy

solicitors regulation authority

Medical device industry falling behind on cyber security

The need for Cyber security is no longer an option – it’s needed, thanks to a real risk to all who live in modern society.

If you have a mobile phone, an email account, a bank account – anything that links you to the digital world where masses of information is stored online – you can be at risk. Even seeing your GP or having an operation opens you up to data breaches. How do you know a hospital receptionist won’t accidentally send your medical files into the public domain? Or perhaps your GP uses an old version of windows with a number of security faults that open patient databases vulnerable to data hacks?

The medical industry is under huge and constant threats of data breaches; but is there enough being done to protect it?

Medical devices and the use of technology in the healthcare industry is increasingly popular, giving healthcare providers easier and faster access to patient records to provide informed decisions and a better service based on the greater availability of information. However, it’s not only doctors and physicians who benefit from convenient medical devices; hackers are easily gaining access to them as well.

“Under siege”

“The medical device industry appears to be under siege by cyber criminals,” noted Phil Taylor, contributor to Fierce Biotech’s security blog. However, the key problem may be that they’re not “taking steps to defend itself”.

Recent surveys were carried out by the Ponemon Institute, an IT research organisation, and Synopsys, a security company. Together they found that, whilst members of the medical device industry were aware of the data risks, they were reportedly not doing very much to prevent them. Over 66% of medical device manufacturers and over 50% of healthcare delivery organisations said they expect a cyber-attack on at least one of the medical devices they make or use. Despite this, only 15-17% of these entities are actually doing something to help prevent the attack.

These are staggering findings…

Do we need stricter laws?

As cyber security – especially in the medical field – is relatively new compared to our longstanding laws and regulations, medical device manufacturers are not yet heavily regulated with strict impositions and sanctions. Whilst the Information Commissioner’s Office has the power to investigate and issue penalties, like fines and undertakings for general breaches, manufacturers can be left to their own devices in making sure their products are digitally safe and secure against cyber-attacks.

There also seems to be a lack of testing as only 9% of manufacturers and 5% of medical device consumers are reported to test their systems annually.

Understandable concerns

The global director of critical systems security at Synopsys, Mr Mike Ahmadi, is concerned with the way things are:

“The healthcare industry continues to struggle when it comes to software security. The industry needs to undergo a fundamental shift, building security into the software development lifecycle and across the software supply chain to ensure medical devices are not only safe, but also secure.”

A few years ago, worrying reports of hacked pacemakers hit the headlines. Even the former U.S. Vice President Dick Cheney reportedly had his pacemaker disconnected from its wireless function to prevent such a hacking. Whilst there have been no confirmed cases reported, the incident still serves as a dire warning of the potential dangers of leaving electronic medical devices without adequate security checks and measures. Medical device manufacturers and suppliers are already aware of the risks, but now they need to step up and take action in implementing cyber safety measures before lives are lost.

The content of this post/page was considered accurate at the time of the original posting and/or at the time of any posted revision. The content of this page may, therefore, be out of date. The information contained within this page does not constitute legal advice. Any reliance you place on the information contained within this page is done so at your own risk.

We offer genuine No Win, No Fee agreements for our clients. Why we do this is simple:

Leading Data Breach Lawyers
Our experience speaks for itself.
We will fight for your right to compensation.
Access to Justice
As a victim of a data breach or hack, you deserve your chance to get access to justice.
Risks Assessment
We carefully risk assess your case and take it on if we think we have a good chance of winning the claim.

Request A Callback From Our Team

Fill out our quick call back form below and we'll contact you when you're ready to talk to us.

Your privacy is extremely important to us. Information on how we handle your data is in our Privacy Policy
SRA
Contact
www.dataleaklawyers.co.uk is © of Your Lawyers Limited - we are 'Authorised and Regulated by the Solicitors Regulation Authority (SRA number 508768)'
arrow-up icon