Become a fan of Slashdot on Facebook

 


Forgot your password?
Close
typodupeerror
×
Medicine Security IT

Support Site For Hospital Respirators Found Riddled With Malware 48

Posted by Soulskill from the what-could-possibly-go-wrong dept.
chicksdaddy writes "A web site used to distribute software updates for a wide range medical equipment, including ventilators has been blocked by Google after it was found to be riddled with malware and serving up attacks. The U.S. Department of Homeland Security is looking into the compromise. The site belongs to San Diego-based CareFusion Inc., a hospital equipment supplier. The infected Web sites, which use a number of different domains, distribute firmware updates for a range of ventilators and respiratory products. Scans by Google's Safe Browsing program in May and June found the sites were rife with malware. For example, about six percent of the 347 Web pages hosted at Viasyshealthcare.com, a CareFusion Web site that is used to distribute software updates for the company's AVEA brand ventilators, were found to be infected and pushing malicious software to visitors' systems."
This discussion has been archived. No new comments can be posted.

Support Site For Hospital Respirators Found Riddled With Malware More

Support Site For Hospital Respirators Found Riddled With Malware

Comments Filter:

  • They will be fine (Score:4, Insightful)

    by Billly Gates ( 198444 ) on Friday June 15, 2012 @06:28PM (#40340179) Journal

    All the hospitals I worked on still use IE 6 and XP SP 2 which has not had an update in over 2 years with +100 exploits. With that and some of the most top IT and well paid infrastructures in the industry I can't see how anything could go wrong?

  • Re:Oh nos, they shut down the Google! (Score:2, Insightful)

    by Anonymous Coward on Friday June 15, 2012 @06:31PM (#40340215)

    Umm, you read the summary or even the title and that is your reaction?

    This is a website that releases updates to medical equipment and instead is serving up malware. The fact that Google automated software is the one that caught it and notified visitors about it is but a minor foot note. Thankfully, it doesn't seem that the firmware itself was messed with though the article is light on details.

    While, definitely alarming, I wouldn't call it surprisingly however. It in the medical field is generally sorely lacking.

  • Re:So what (Score:5, Insightful)

    by Anonymous Coward on Friday June 15, 2012 @07:58PM (#40340763)

    Possibly - but the most malware-infected sites are sometimes the ones you wouldn't expect. Charities. Churches. Fraternal organizations. Anyplace where the servers are operated and maintained by volunteers who don't have a financial stake in the organization's operations, and who don't have a good background in security.

    Porn sites, on the other hand, are run by businesses who expect repeat business, and can't afford to scare customers away with malware. Their sites are much LESS likely to be infected, because they have professional IT staffs.

    You get the IT support you pay for.

  • Re:I don't get it... (Score:4, Insightful)

    by dalias ( 1978986 ) on Friday June 15, 2012 @09:44PM (#40341531)
    The problem is that the malware might offer a backdoor for someone to intentionally compromise the integrity of the medical device firmware. Even if it doesn't, the fact that the site is vulnerable means somebody else who's actually skilled (unlike the dumb sks/bots) could independently obtain access for the purpose of modifying the firmware.

Slashdot Top Deals

The Tao is like a glob pattern: used but never used up. It is like the extern void: filled with infinite possibilities.

Close