Some Siemens Healthineers (belonging to Siemens company that produces medical technique) products affected by BlueKeep vulnerability, patches for which were released in the middle of this month.Experts earlier warned, that BlueKeep may be quite dangerous for some enterprise organizations. Healthcare is not an exclusion.
Immediately after Microsoft released a patch, Siemens notified clients about initiation of internal investigation, during which was necessary to establish, to what extent CVE-2019-0708 affected Healthineers products.
Later Siemens published official recommendations, in which explains how the gap damages company’s products. It also described steps that need to make users for reducing risk of this security issue exploitation.
“Depending on the target system and intent of the attacker, a successful exploit could result in data corruption and potential harm for patients and/or the environment”, — confessed in Siemens.
Affected by issue in software products include MagicLinkA, MagicView, Medicalis, Screening Navigator.
Company recommends users to install updates that Microsoft released two weeks ago.
Meanwhile cybercriminals started scanning Net for Windows-systems that are sensitive to BlueKeep security issue (CVE-2019-0708). Fortunately, this scanning is not followed by attempts of gap exploitation.