Next Steps Toward Managing Legacy Medical Device Cybersecurity Risks

The Food and Drug Administration (FDA) asked MITRE to create a white paper addressing challenges faced by healthcare providers and hospitals using outdated medical devices, which may be vulnerable to cybersecurity risks. Through discussions with stakeholders including device manufacturers, and federal agencies, MITRE proposed solutions such as shared responsibility for the device life cycle, vulnerability management, workforce development, and standardizing information to assist healthcare delivery organizations in managing risks.