Gaps Remain In US FDA's Response Procedures For Cybersecurity Events, OIG Says

FDA's policies and procedures do not adequately address how to handle post-market device cybersecurity events and the agency had not adequately tested its ability to respond to emergencies arising from such events, US HHS' investigative arm says. But the top cybersecurity official at FDA's device center says OIG's report is "incomplete and inaccurate."

Cyber attack (BeeBright/Shutterstock.com)

There are serious deficiencies in how US FDA handles post-market cybersecurity threats for medical devices, with gaps in certain standard operating procedures, a lack of testing what procedures are in place, and a lack of effective means of communicating with partner agencies to respond to threats and attacks, according to a recent Inspector General report.

In a report published by the US Office of Inspector General at the Department of Health and Human Services, investigators said they reviewed guidances and procedures that FDA's device center has in place to tackle

Read the full article – start your free trial today!

Join thousands of industry professionals who rely on Medtech Insight for daily insights

  • Start your 7-day free trial
  • Explore trusted news, analysis, and insights
  • Access comprehensive global coverage
  • Enjoy instant access – no credit card required

More from Cybersecurity

Congress, Researchers Highlight Security Risks At DNA Testing Services

 
• By 

Congress has launched an inquiry into 23andMe amid privacy concerns following its bankruptcy, particularly regarding the potential sale of sensitive user data. Additionally, a Cybernews report gave 40 DNA testing firms an average cybersecurity grade of D, citing widespread vulnerabilities and data breaches, along with inadequate public information about their security practices.

Birmingham City University Develops New Defense Mechanism Against Cyberattacks On AI Systems

 

AI systems used in healthcare are vulnerable to adversarial cyberattacks, which are a growing concern, said Atif Azad, a professor of AI at Birmingham City University. Azad’s research group has developed a method that trains AI to become more resilient to cyber threats through the use of random image adjustments.

Enovis Appoints Damien McDonald CEO, Reaffirms Q1 Guidance Amid Strategic Growth Push

 
• By 

Enovis has named veteran medtech leader Damien McDonald as its new CEO effective 12 May as the orthopedic company reaffirms first-quarter 2025 revenue guidance of between $555m and $563m. Medtech Insight spoke with Tim Czartoski, Enovis’ president of US surgical and global product and enabling technologies, about the firm’s growth strategy and innovation plans.

Digital Health Roundup: Intuitive Surgical CEO Exec Chat, AI Alert System, FDA, Roche New NGS Prototype

In this week’s Digital Health Roundup, Medtech Insight’s Marion Webb highlights her conference coverage from CES, HIMSS, AAOS and LSI including Exec Chats with Gary Guthart, CEO of Intuitive Surgical, and Arcadia’s chief strategy officer Aneesh Chopra. Brian Bossetta highlights a recently FDA-cleared alert system that sends vital signs to clinicians. Elizabeth Orr discusses FDA warning letters sent to Exer Labs for exceeding marketing claims under what is allowed under the device’s 510(k) clearance. Shubham Singh discusses how Roche's unveiling of its next-generation sequencing (NGS) prototype challenges Illumina. The SBX technology is set to compete directly with Illumina’s NovaSeq and NextSeq platforms.

More from Digital Technologies

Subsense Develops Nonsurgical, Nanoparticle-Based Brain-Computer Interface For Neurological Disorders

 
• By 

Neurotechnology start-up Subsense came out of stealth with $17m in seed funding to develop a nonsurgical, nanoparticle-based brain-computer interface. Medtech Insight spoke with the firm’s new neurotech lead Cyril Eleftheriou about the technology and its potentially wide applications for treating Parkinson’s, epilepsy, inner speech decoding, and more.

AAOS 2025 Orthopedic Roundup: J&J Velys UKA, Stryker Mako 4, Materialise, Canary Medical

 
• By 

At AAOS, orthopedics players showcased their latest robotic-assisted platforms, power tools, 3D printed technologies and software offerings. This article brings you highlights from interviews Medtech Insight conducted on site with representatives from J&J, Stryker, Materialise and Canary Medical.

South Korea Adds Digital Health Rules To Already Complicated Regulatory Landscape

 
• By 

A New South Korean law, the Digital Medical Products Act, enhances regulation for digital health products. Medical devices in the country are categorized both by risk and by similarity to already authorized devices. The approval process may stretch to 515 days for new manufacturers.