Cybersecurity vulnerability analysis of medical devices purchased by national health services

Open Source Intelligence (OSINT) involves multiple steps including target identification, information gathering, processing, data analysis, and dissemination of results. It uses publicly available data to understand stakeholder actions. The methodology was applied to target cybersecurity vulnerabilities in medical devices listed in the EU EUDAMED database or US FDA. It involves extracting relevant information from government and public cybersecurity databases, organizing and analyzing them, and sharing the findings for strategic decision-making.