Is FDA doing enough to support medical device security?

Since the release of cybersecurity guidance by the FDA in 2016, medical device vendors have reported 400% more vulnerabilities per quarter, according to research from MedCrypt. The increase in disclosures is a positive sign that vendors are taking cybersecurity seriously, although the data only represents a small subset of medical device manufacturers. However, researchers predict that the rate of disclosure will increase further as more manufacturers participate in cybersecurity vulnerability disclosures. It is important for healthcare organizations to improve patch management policies to address disclosed vulnerabilities and protect against unauthorized access.