MedCity News September 24, 2025
Joe M. Saunders

Customers are no longer willing to accept vague assurances about security. Instead, they expect evidence of secure design, documented vulnerability management processes, and transparency about software components.

After decades of accepting cybersecurity as someone else’s problem, healthcare buyers have reached a turning point. Where cost and functionality once dominated purchasing decisions, cybersecurity requirements now serve as mandatory gatekeepers that can eliminate vendors from consideration entirely.

Recent regulatory actions underscore this shift. In early 2025, the FDA and CISA issued warnings about critical cybersecurity flaws in Contec and Epsimed patient monitors — weaknesses that threatened both device integrity and patient safety. The monitors were found to contain a hidden firmware backdoor, allowing unauthorized remote access and potential manipulation of patient data....

Today's Sponsors

Venturous
ZeOmega

Today's Sponsor

Venturous

Continue Reading

 
Topics: Cybersecurity, Medical Devices, Technology
Related Articles:
OT–IT Cybersecurity: Navigating The New Frontier Of Risk
STAT+: Hospitals and Epic demand better security for patient records
‘Complexity is where cyber risk tends to grow’
Researchers broke every AI defense they tested. Here are 7 questions to ask vendors.
Your Organization Isn’t Cyber Ready... It Just Thinks It Is

Share Article