Coming in the wake of cyberattacks in AIIMS, Delhi, and another hospital — where patient data was uploaded for sale on the dark web — the solution runs on the ‘zero trust’ philosophy, an approach which filters every user and device.
Multinational cybersecurity company Palo Alto Networks on Tuesday, December 6, announced a medical IoT (internet of things) security suite that runs on the 'zero trust' philosophy — a cybersecurity approach that entails continuous verification of every user and device. The timing of the announcement could not have been better, as the country's premier hospital — All India Institute of Medical Sciences (AIIMS), Delhi — is just getting back on its feet after a cyberattack, and at least one other hospital's servers were breached with patient data uploaded for sale on the dark web.
Recommended ArticlesView All
New Locker Rules — Here's why the RBI has gone overboard
Jan 28, 2023 IST5 Min(s) Read
Meet Padma Shri Awardee Guru K Kalyanasundaram Pillai, the man who is keeping an ancient tradition alive
Jan 27, 2023 IST3 Min(s) Read
This is how the new draft IT rules propose to make online gaming safe
Jan 27, 2023 IST4 Min(s) Read
78 percent Indian workers uneasy about job security amid layoffs: Survey
Jan 27, 2023 IST5 Min(s) Read
The new suite — Medical IoT Security — is aimed at enabling healthcare organisations to deploy and manage new connected technologies quickly and securely, especially now that healthcare providers use "digital devices such as diagnostic and monitoring systems, ambulance equipment, and surgical robots to improve patient care," the company said in a press release.
“The proliferation of connected medical devices in the healthcare industry brings a wealth of benefits, but these devices are often not well secured,” said Anand Oswal, Senior Vice President of Products, Network Security, at Palo Alto Networks.
Also read: Online registration and other initial online services begin at AIIMS Delhi after cyber attack: Sources
“This makes security devices an attractive target for cyberattackers, potentially exposing patient data and ultimately putting patients at risk," he added.
Palo Alto said it implements zero trust through "automated device discovery, contextual segmentation, least privilege policy recommendations and one-click enforcement of policies" in a "seamless, simplified manner."
"Medical IoT Security also provides best-in-class threat protection through seamless integration with Palo Alto Networks cloud-delivered security services, such as Advanced Threat Prevention and Advanced URL Filtering," the press release read.
Also Read: AIIMS Delhi cyber attack: Authorities confident of retrieving encrypted data, sources say
According to the announcement, Medical IoT Security uses machine learning (ML) to enable healthcare organisations to:
"Healthcare providers continue to be high-value targets for attackers. This reality, combined with the diversity of medical IoT devices and their inherent vulnerabilities, points to a real need for device security that is purpose-built for healthcare use cases. The ability to defend against threats targeting critical care devices ... is quickly becoming a necessity for the protection of patient data and lives," said Ed Lee, Research Director, IoT and Intelligent Edge Security, International Data Corporation.
(Edited by : Shoma Bhattacharjee)