News | Cybersecurity | April 16, 2018

Philips Warns of Cybersecurity Vulnerabilities in IntelliSpace and iSite PACS Products

Company says it has not received any reports of patient harm from vulnerabilities, but is offering remediation options for its customers

Philips Warns of Cybersecurity Vulnerabilities in IntelliSpace and iSite PACS Products

April 16, 2018 — Philips Healthcare last week issued a proactive advisory warning to its iSite and IntelliSpace picture archiving and communication system (PACS) customers of potential security vulnerabilities in the products. The company cautioned that while it has received no reports of patient harm, the vulnerabilities in question could impact or potentially compromise patient confidentiality, system integrity and/or system availability.

Philips identified the cybersecurity vulnerabilities, predominantly in third-party components, that if fully exploited may allow low-skill attackers remote entry to the applications. Once inside, any attackers could potentially:

  • Provide unexpected input into the applications;
  • Execute arbitrary code;
  • Alter the intended control flow of the system;
  • Access sensitive information; or
  • Potentially cause a system crash.

The company said its own analysis does not suggest the vulnerabilities would impact clinical use. This is largely due to the fact that IntelliSpace PACS is operated in a managed service environment that adheres to the latest recommendations of the U.S. Department of Homeland Security’s Industrial Control Systems Cyber Emergency Response Team (ICS-CERT). The company also noted that it uses an automated antivirus solution and offers a monthly recurring patch program for IntelliSpace customers.

ICS-CERT released its own advisory that describes the vulnerabilities in further detail. Read the full ICS-CERT advisory here.

Philips is offering customers three potential pathways to address the security vulnerabilities:

  1. Enrolling in the recurring patch program, which Philips said will remediate 86 percent of all known vulnerabilities;
  2. Option 1 plus updating system firmware, which will remediate 87 percent of all known vulnerabilities, including all known critical vulnerabilities;
  3. Option 2 plus upgrading to IntelliSpace PACS 4.4.5x with Windows operating system 2012, which addresses product hardening. Philips said this option will remediate 99.9 percent of all the known vulnerabilities, including all critical vulnerabilities.

Remediation options are provided at no charge for Philips customers on full service delivery model contracts.

For more information: www.usa.philips.com/healthcare

 

Related Content

International medical imaging IT and cybersecurity company Sectra has signed two contracts to provide the radiology module of its enterprise imaging solution with two university medical centers in Germany
News | Enterprise Imaging
University Medical Centers in Germany Choose Sectra’s Radiology Solution to Streamline Workflows and Shorten Lead Times for Patients

April 25, 2024 — International medical imaging IT and cybersecurity company Sectra has signed two contracts to provide ...

Time April 25, 2024
arrow
Large language model GPT-4 matched the performance of radiologists in detecting errors in radiology reports, according to research published in Radiology
News | Artificial Intelligence
GPT-4 Matches Radiologists in Detecting Errors in Radiology Reports

April 19, 2024 — Large language model GPT-4 matched the performance of radiologists in detecting errors in radiology ...

Time April 22, 2024
arrow
Mach7 reaches a momentous landmark, to provide its Vendor Neutral Archive, eUnity Diagnostic Viewer and Professional Services to the Veterans Health Administration (VHA) as part of the VHA's National Teleradiology Program (NTP)
News | PACS
Mach7 Technologies selected as a solution provider for Veterans Health Administration's National Teleradiology Program NextGen PACS

April 11, 2024 — Mach7 Technologies, a company specializing in innovative medical imaging and data management solutions ...

Time April 11, 2024
arrow
DCISionRT
News | Radiation Dose Management
PreludeDx Presents New Data Demonstrating Utility of DCISionRT to De-escalate Radiation Therapy for Women with DCIS

April 11, 2024 — Prelude Corporation (PreludeDx), a leader in precision diagnostics for early-stage breast cancer ...

Time April 11, 2024
arrow
Volpara and Lunit co-host session on reducing interval cancers with AI
News | Mammography
Volpara Launches MQSA Compliance Software at the Society for Breast Imaging Symposium

April 11, 2024 — Volpara Health Technologies Ltd., a global leader in software for the early detection and prevention of ...

Time April 11, 2024
arrow
ProFound Cloud, powered by Google Cloud architecture and Google’s Health AI innovations, redefines accessibility to critical insights, empowering radiologists in early breast cancer detection
News | Society of Breast Imaging (SBI)
iCAD Showcases New ProFound Cloud, Enhanced ProFound Detection Workstation Features and New Strategic Partnerships at SBI Annual Symposium

April 11, 2024 — iCAD, Inc., a global leader in clinically proven AI-powered cancer detection solutions, announced today ...

Time April 11, 2024
arrow
AMA survey finds economic, patient-care impact of Change Healthcare cyber-attack ongoing
News | Cybersecurity
Life After Change Cyberattack: Without Payment for Claims, Physicians Struggle to Keep Practices Afloat

April 10, 2024 — The American Medical Association (AMA) released informal survey findings (PDF) showing the ongoing ...

Time April 10, 2024
arrow
Collaboration set to deliver comprehensive navigation and imaging integration that will streamline intraoperative decision-making
News | Radiology Business
Brainlab and Fujifilm Integrate Cutting-Edge Technology, Offering Advanced Capabilities to Neurosurgery Clinicians in the US

April 4, 2024 — FUJIFILM Healthcare Americas Corporation, a leading provider of diagnostic and enterprise imaging ...

Time April 04, 2024
arrow
Here is a look at the most-read content during the month of March on itnonline.com
Feature | Radiology Business | By Melinda Taschetta-Millane
Top 10: Must-reads from the Month of March

Here is a snapshot of the Top 10 most-read content from ITN's viewers during the month of March: 1. Philips Teams with ...

Time April 04, 2024
arrow
Designed to support the imaging needs and budgets of small radiology practices
News | PACS
aycan announces a mini PACS solution

April 3, 2024 — aycan, a recognized leader in medical imaging, has introduced aycan mini PACS. Designed for smaller ...

Time April 03, 2024
arrow
© Copyright Wainscot Media. All Rights Reserved.
Subscribe Now