Bradley Barth reports:
… Researchers at the cybersecurity firm TrapX Security refer to the act of infiltrating or hijacking medical devices as MEDJACK. In a 2015 report, the company cited examples of such attacks in which the malware infection was limited to the device itself. No more, however: In its 2016 MEDJACK.2 report, TrapX revealed examples of bad actors using hijacked medical devices as a means to gain a foothold into other connected systems by circumventing firewalls and endpoint solutions that are supposed to protect key databases. In other words, “The malware, on its own accord, has found ways to go beyond the boundaries of where it first lands,” said Anthony James, CMO at TrapX, in an interview with SCMagazine.com.
Read more on SC Magazine.