Author: Constancio Fernandes, VP of Engineering, Asimily


The security teams at healthcare systems tasked with safeguarding massive fleets of Internet of Medical Things (IoMT) devices are used to getting a heavy dose of cybersecurity patch advisories—the challenge is what to do next.

There has been no shortage of these urgent alerts flagging complex IoMT device vulnerabilities over the past few years, from the aptly named Urgent/11 to SweynTooth, GRUB2, and countless others. However, those alerts don’t offer security teams any insights into the actual risk posed to their healthcare organizations. In fact, it’s usually not even clear which internet-connected devices the known vulnerabilities impact, or how critical it is to take action and mitigate those issues.

Security and IT teams grappling with the nuances of securing IoMT vulnerabilities must overcome four specific challenges []