There are 13 security vulnerabilities across GE HealthCare’s Vivid Ultrasound products and two of its software programs. According to cyber security firm Nozomi Networks, these vulnerabilities, scoring 5.7 to 9.6 on the CVSS 3.1 severity scale, could lead to remote code execution and other malicious activities. Some attacks would require physical access to the devices, a significant hurdle but not impossible to overcome, as ultrasound machines are often accessible to outside individuals. GE HealthCare has provided patches and mitigations for all vulnerabilities.
SEC Disclosures Up, But Not Enough Details Provided
New regulations by the US Securities and Exchange Commission (SEC) have caused the number of cybersecurity incident reports from public companies to rise by 60%
