Cybersecurity

BD, CISA warn of security flaw in cancer testing system

A hard-coded credential vulnerability in medical laboratory equipment used for cervical cancer screenings could allow an attacker to modify sensitive patient information, according to an Oct. 4 warning from BD and the Cybersecurity and Infrastructure Security Agency.

By: Naomi Diaz

Friday, October 7th, 2022

Manufacturer BD and CISA said the flaw affects the BD Totalys MultiProcessor versions 1.70 and earlier.

The flaw allows attackers to use hard-coded credentials that could give them access to, modify or delete sensitive information, including electronic protected health information and personally identifiable information.

According to BD, there have been no reports of the vulnerability being exploited, including in clinical settings.

BD says it is currently working to remedy the flaw and that a software update, set to release in the fourth quarter of 2022, should fix it.

Next Up in Cybersecurity

US records an increase in C. auris clinical cases

The U.S. has recorded 7,045 clinical Candida auris cases as of Dec. 20 — a 56.1% increase from the 4,514…

By: Paige Twenter
17 hours ago
7 major vaccine policy changes in 2025

In 2025, federal health agencies dismantled precedents in vaccine guidance, fracturing state-federal alignment and fueling concerns about public health guidance.…

Ella Jeffries and Paige Twenter
17 hours ago
VA, Microsoft partner on innovation: 5 things to know

The U.S. Department of Veterans Affairs has teamed up with Microsoft and the American Legion to create innovative digital health…

By: Giles Bruce
20 hours ago

Comments are closed.

How rural health systems are scaling ambient AI — fast

Next Up in Cybersecurity

US records an increase in C. auris clinical cases

7 major vaccine policy changes in 2025

VA, Microsoft partner on innovation: 5 things to know

Join the 500,000+ healthcare executives who start their day with Becker’s