CISA issues alert about cybersecurity vulnerabilities in GE medical devices

The US Cybersecurity and Infrastructure Security Agency (CISA) published a notice, according to which cybersecurity vulnerabilities have been discovered in GE radiology tools (e.g., CT and PET scanners, mammography devices, MRI machines, ultrasounds, X-rays, and molecular imaging devices). According to the notice, if an attacker gains access to the healthcare delivery organisation’s network, they will be able to exploit these vulnerabilities and expose sensitive medical data. GE has been informed and plans to take proactive measures to deal with the issue. So far, there is no information about anyone exploiting these vulnerabilities.