Cybersecurity in manufacturing

OpenText Information Management

Not long ago, many manufacturing CIOs thought that cybersecurity was something only the financial sector had to worry about. Why would anyone want to hack a manufacturing plant? How times have changed – now, cybersecurity in manufacturing is definitely front and center.

Tracking Cybersecurity Threats in Manufacturing

Data Breach Today

With the rise of the industrial internet of things comes a far broader attack surface in the manufacturing sector. Chris Morales of Vectra outlines findings of a new report on cyberattack trends in the manufacturing sector

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Medical Device Security: The Manufacturer's View

Data Breach Today

Michael McNeil of Philips on the Manufacturer's Role in Improving Device Cybersecurity Awareness of medical device security issues has grown dramatically over the past few years.

Cyberattack Hits Aircraft Parts Manufacturer

Dark Reading

Belgium's Asco has shut down manufacturing around the world, including the US, in response to a major cybersecurity event, but what happened isn't clear

FDA Reveals Steps to Bolster Medical Device Cybersecurity

Data Breach Today

'Playbook' Prepared; Data Sharing Efforts Planned In its ongoing quest to improve the state of medical device cybersecurity, the FDA has announced a number of key moves - including the release of a security "playbook," plans to leverage information sharing and analysis organizations and an effort to update its 2014 premarket guidance for manufacturers.

Bolstering the Cybersecurity of Medical Devices

Data Breach Today

As cybersecurity threats in the healthcare sector evolve, medical device manufacturer ICU Medical is taking a number of steps to help safeguard its products. Chaitanya Srinivasamurthy and Marshall Fryman of the company describe these security initiatives

FDA Calls for 'Cybersecurity Bill of Materials' for Devices

Data Breach Today

Food and Drug Administration Releases Draft of Updated Pre-Market Guidance for Medical Devices Before marketing their medical devices, manufacturers should prepare a "cybersecurity bill of materials" that lists components that could be susceptible to vulnerabilities, according to a draft of updated FDA premarket guidance.

New Guidance Published on Cybersecurity and Medical Devices

Data Matters

New European medical device guidance will require manufacturers to carefully review cybersecurity and IT security requirements in relation to their devices and in their product literature. In December 2019, the Medical Device Coordination Group (MDCG) published its guidance on cybersecurity for medical devices (the Guidance). The Guidance acknowledges that even though the Regulations impose legal obligations only on the manufacturer of the device, all other actors (e.g.,

FDA Proposes Action to Enhance Medical Device Cybersecurity

Data Breach Today

Agency Seeks Congressional Authority to Require Makers to Take Certain Steps The FDA has issued plans for advancing the safety of medical devices, including a proposal to impose new cybersecurity requirements on manufacturers.

The Cost of Dealing With a Cybersecurity Attack in These 4 Industries

Security Affairs

A cybersecurity issue can cause unexpected costs in several different areas, which is the cost of Dealing with an attack in 4 Industries? A cybersecurity issue can cause unexpected costs in several different areas. Manufacturing. SecurityAffairs – cybersecurity , hacking).

Singapore presented the Operational Technology (OT) Cybersecurity Masterplan

Security Affairs

The Cyber Security Agency of Singapore (CSA) presented the Operational Technology (OT) Cybersecurity Masterplan to increase the resilience of Critical Information Infrastructure (CII) sectors. The Singapore OT Cybersecurity Masterplan is available at the following URL: [link].

GUEST ESSAY: The story behind how DataTribe is helping to seed ‘Cybersecurity Valley’ in Maryland

The Last Watchdog

With the largest concentration of cybersecurity expertise –– the “oil” — in the world, Maryland is fast changing from the Old Line State into “Cybersecurity Valley.” It’s all part of a national trend – accentuated in Maryland because of its cybersecurity infrastructure.

A CIO on Carrying the Burden of Medical Device Cybersecurity

Data Breach Today

A lack of standards spelling out to manufacturers their responsibilities for addressing the cybersecurity of their medical devices - especially legacy products - has left a big burden on the healthcare entities that use these devices, says Cletis Earle, CIO at Kaleida Health

Agreement on Proposal for Cybersecurity Act

Hunton Privacy

The European Commission (“Commission”), the European Parliament (“Parliament”) and the Council of the European Union reached an agreement earlier this month regarding changes to the Proposal for a Regulation on ENISA, the “EU Cybersecurity Agency”, and repealing Regulation (EU) 526/2013, and on Information and Communication Technology Cybersecurity Certification (the “Cybersecurity Act”). Cybersecurity certification framework.

The DHS Cybersecurity Strategy: Five Pillars of Cybersecurity Goals

Thales eSecurity

The recent DHS Cybersecurity Strategy was released at a crucial time when today’s cyberspace has become a new frontier for warfare for both nation states and criminal hackers. All in all, the DHS Cybersecurity Strategy provides a solid framework for cybersecurity.

Lessons for In-House Counsel from Cybersecurity’s Front Lines

HL Chronicle of Data Protection

Recent developments reinforce the urgent need for general counsel and legal departments to deepen their focus on cybersecurity. Lessons for In-House Counsel from Cybersecurity’s Front Lines was written by members of the Hogan Lovells Privacy and Cybersecurity practice Peter M.

How To Solve The Cybersecurity Skills Shortage

Cyber Info Veritas

We’ve all read and heard somewhere about the cybersecurity skills shortage. For me, this brings up the question of how to solve the cybersecurity skills shortage. Solving the cybersecurity skills shortage should be no different.

NIST Updates Cybersecurity Framework

Data Matters

On April 17, the National Institute for Standards and Technology (NIST) released an updated version of its standard-setting Cybersecurity Framework. Commerce Secretary Wilbur Ross announced the new release with a statement saying the “Cybersecurity Framework should be every company’s first line of defense” and “adopting version 1.1 For example, the revised introduction notes that “similar to financial and reputational risks, cybersecurity risk affects a company’s bottom line.

NIST Cybersecurity Framework: IoT and PKI Security

Thales eSecurity

Cybersecurity is no different. President Obama and now President Trump have issued executive orders supporting The National Institute of Standards and Technology’s (NIST) Cybersecurity Framework. government agencies to meet the NIST Cybersecurity Framework, please click here.

IoT 105

Too Much Holiday Cheer? Here’s Something to Fear: Cybersecurity Predictions for 2020

Adam Levin

2019 is virtually over and a new year beckons with all the solemnity of the grim reaper for those who don’t have their eyes wide open to the persistent threats we collectively face in the areas of privacy and cybersecurity. . In the main, consumers and business leaders alike are more aware of cybersecurity and privacy than ever before. Okay, simmer down all you cybersecurity people. Data Security Cybersecurity Data breach Privacy featured CyberSecurity predictions

Why You Should Teach Yourself Cybersecurity

Cyber Info Veritas

The problem comes when you or anyone want to get a job or are looking to learn about Information Technology or Cybersecurity and face the frustration when competing out there with the Pros. Make sure you have your own cybersecurity lab in place.

IoT Security Woes Plague Healthcare Industry

Threatpost

Hospitals and IoT device manufacturers must take a dual approach in securing connected telehealth devices. IoT Vulnerabilities Connected devices Cybersecurity enfuse 2019 Healthcare Internet of things iot medical IoT regulation Medical device security regulation SB-327

IoT 112

Huawei Security Shortcomings Cited by British Intelligence

Data Breach Today

More 'Defects' Found in Software Engineering and Cybersecurity Processes Britain's intelligence establishment warns that Chinese networking giant Huawei's "software engineering and cybersecurity processes" continue to be beset by unresolved "defects" and that improvements promised by the manufacturer have yet to be seen.

Pentagon Buys Equipment With Known Vulnerabilities: Audit

Data Breach Today

Report Also Highlights Cybersecurity Concerns About Use of Equipment Made in China The U.S.

EUROPE: EU MDGC issues new guidance on Cybersecurity for medical devices

DLA Piper Privacy Matters

They also highlight the responsibility of the various parties involved in, for example, integration of systems or devices, and of the operators of such devices, and the need to continuously review security measures to ensure that appropriate cybersecurity measures are in place at all times.

Privacy and Cybersecurity September 2019 Events

HL Chronicle of Data Protection

Paul Otto will speak on cybersecurity & patient safety at the Medical Device Manufacturers Association’s 12th Annual Medical Technology Executive Forum. The Hogan Lovells Privacy and Cybersecurity KnowledgeShare will share the latest thinking on the key privacy and cybersecurity issues faced by those with data protection responsibilities within organisations. News & Events autonomous vehicles CCPA cybersecurity GDPR medical devices patient data privacy

DHS and FBI – Hackers Are Targeting US Nuclear, Energy, and Manufacturing Facilities

Privacy and Cybersecurity Law

According to a new joint report issued by the US Department of Homeland Security (DHS) and Federal Bureau of Investigation (FBI), hackers have been penetrating the computer networks of companies that operate nuclear power stations, energy facilities, and manufacturing plants in the US since May 2017. On May 11, as the attacks were ongoing, President Trump signed an executive order to strengthen the cybersecurity of federal networks and critical infrastructure.

2018 Predictions – Rise of IoT adoption will increase cybersecurity attacks

Thales eSecurity

With 2018 approaching, I have been thinking about what will happen in the cybersecurity landscape and would like to make some predictions for the year ahead. An unfortunate occurrence over the past few years has been that data breaches just keep getting bigger and impacting more people.

IoT 98

Shortages of talent, training haunt cybersecurity efforts

Information Management Resources

Manufacturers face serious cyber security concerns, but they continue to struggle with finding skilled professionals and might be underspending on security training. Data security Cyber security Cyber attacks

Medtronic Cardiac Devices Recalled Due to Cyber Concerns

Data Breach Today

FDA Announces 'Voluntary Recall' Related to Vulnerabilities The FDA has announced a "voluntary recall" by Medtronic of certain internet-connected programmers for implantable cardiac devices due to cybersecurity vulnerabilities.

A Flurry of Recent Cybersecurity Activity from the Trump Administration

Data Matters

Soon after he took office, President Trump issued Executive Order (EO) 13800, Strengthening the Cybersecurity of Federal Networks and Critical Infrastructure. Given that the President spent much of his campaign and early Presidency trying to distance his Administration from that of his predecessor, commentators noted a surprising amount of continuity between Trump’s cybersecurity EO and the Obama Administration’s approach to cybersecurity.

Firmware: A New Attack Vector Requiring Industry Leadership

Dark Reading

It's time for cybersecurity manufacturers and solution providers to step up and show leadership in addressing firmware security. Read why and how

Why Cybersecurity Will Save the Internet of Things

AIIM

In this article, we will explain why cybersecurity will save IoT and let us progress well into the future with greatly reduced hazard. It is the ability of your car to keep in constant communication with the manufacturer to report any problems it may be suffering that cannot be seen.

IoT 56

Treating cybersecurity like workplace safety

CGI

Treating cybersecurity like workplace safety. When I worked with a major global chemical manufacturer, every meeting began with a PowerPoint presentation on safety, highlighting the importance of the topic. Tips to prioritize cybersecurity.

Philips, BD Yet Again Issue Medical Device Security Alerts

Data Breach Today

Experts Say Companies Offer Good Examples of Transparency Philips and Becton Dickinson have each issued multiple alerts this year regarding cybersecurity flaws in some of their medical devices.

California Passes First-Of-Its-Kind Law Focused on Internet of Things Cybersecurity

HL Chronicle of Data Protection

Late last month, California Governor Jerry Brown signed the first US Internet of Things (IoT) cybersecurity legislation: Senate Bill 327 and Assembly Bill 1906. Consumer Privacy California connected devices consumer cybersecurity Internet of Things IoT legislation new law

California Passes First Of Its Kind IoT Cybersecurity Law

Privacy and Cybersecurity Law

California recently became the first state in the union to pass a cybersecurity law addressing “smart” devices and Internet of Things (IoT) technology. The new law addresses the security obligations of “manufacturers” of connected devices.

Proposed Changes to FDA Guidance for the Content of Premarket Submissions for Management of Cybersecurity in Medical Devices: What you Should Know

HL Chronicle of Data Protection

October is National Cybersecurity Awareness Month and the Food and Drug Administration (FDA or the agency) has been busy. This alert explains the following: what is changing with the premarket cybersecurity guidance. Key updates to FDA’s premarket cybersecurity guidance.

HHS Announces New Health Sector Cybersecurity Coordination Center

Privacy and Cybersecurity Law

Department of Health and Human Services (HHS) Eric Hargan announced the official opening of the Health Sector Cybersecurity Coordination Center (HC3). HC3 replaces the Healthcare Cybersecurity and Communications Integration Center (HCCIC), which was announced in April 2017.

Warnings Issued About Medtronic Cardiac Devices

Data Breach Today

Wireless Communication Weakness Could Allow Attackers to Manipulate Products Federal regulators and medical device maker Medtronic have issued new warnings about cybersecurity vulnerabilities in certain cardiac devices from the manufacturer that could potentially allow attackers to manipulate the products' functionality, posing safety risks to patients.