Cybersecurity vulnerability issues are plaguing a medication dispensing system from BD, enough to which the Cybersecurity and Infrastructure Security Agency says successful exploitation of the vulnerability could allow an attacker to gain access to electronic protected health information or other sensitive information.
The Department of Homeland Security on Tuesday issued its fifth cybersecurity alert about Becton Dickinson’s Pyxis medication dispensing machines in as many years.
In the latest notice, the DHS’s Cybersecurity and Infrastructure Security Agency describes the lack of password aging as a weakness that could give an attacker access to electronic protected health information. DHS scored the vulnerability as 8.8 on a 10-point scale.
BD, which voluntarily reported the vulnerability, is working with users whose credentials need updating while piloting a new system that is intended to improve authentication management.
Read the full story at MedTech Dive.