Medical devices and supporting software continue to face significant security vulnerabilities, posing a threat to healthcare, warns the Health Information Sharing and Analysis Center. In a joint report with Finite State and Securin, they revealed a 59% YoY increase in such vulnerabilities, with software applications accounting for 64%. 160 of these vulnerabilities had been weaponized, with some utilized by advanced persistent threat groups. The authors recommended regular penetration testing, prioritizing vulnerability patching, and using binary analysis tools to identify potential vulnerabilities.
The NCSC wants developers to get serious on software security
The NCSC’s new Software Security Code of Practice has been praised by cyber professionals as a significant advancement in enhancing software supply chain security.
