Cyberattacks pose security risk to CT, MRI scanners

Erik L. Ridley
Jan 31, 2018
2017 07 27 15 21 23 906 Computer Error 400

MRI and especially CT scanners are vulnerable to cyberattacks such as the WannaCry virus, and manufacturers and healthcare providers must be aware of the risks and mechanisms behind potential attacks to create a safe healthcare environment and protect patients, according to an Israeli study published on arXiv.org.

Working in collaboration with the largest health maintenance organization in Israel, researchers from the Malware Lab at Ben-Gurion University of the Negev in Beer-Sheva conducted a risk-analysis survey of MRI and CT scanners. The survey assessed a range of vulnerabilities and potential attacks on MRI and CT scanners, medical and imaging information systems, and medical protocols and standards.

The researchers found that CT systems have the greatest risk of cyberattack due to their pivotal role in acute care imaging. The researchers, led by Nir Nissim, PhD, found that the infrastructure and functionality of CT devices could be targeted using several possible attack vectors, which could lead to the following:

  • Disruption of the parameters used in scanning within the CT device (e.g., tampering with the radiation exposure levels)
  • Mechanical disruption of the CT device (e.g., changing the pitch)
  • Disruption of the tomography scan signals constructing the digital images
  • Denial-of-service attacks against the CT device

Due to its central position and controls, the host control PC is the most vulnerable component in the CT scanner ecosystem. However, government regulations make it difficult to maintain regular updates to this component, and common computer security methods such as antivirus software are insufficient to prevent cyberattacks, according to the researchers.

As a result, other approaches are needed to better protect these devices, they wrote. For their part, Nissim and colleagues are now working on a machine learning-based method for securing CT devices.

"Our technique will take an out-of-band approach, by learning the actual commands being sent to the CT's gantry, together with patients' profiles and scan labels and detecting anomalies," the group wrote. "Such method can assume that the host control PC is infected, and by taking an out-of-band approach, we can examine the sent commands before they arrive to the CT's gantry, enabling to prevent malicious commands before they occur."

Latest in IS
2017 03 30 15 16 56 745 Mammogram Calendar 400
Can self-scheduling and referral close breast cancer screening gaps?
July 31, 2023
2018 11 19 17 20 4754 Back Pain 400
Simple EHR intervention reduces unnecessary lower-back x-rays
July 30, 2023
2020 01 28 20 45 5229 Cloud Computing Laptop 400
Amazon Web Services releases imaging data platform
July 25, 2023
2021 06 16 23 10 5735 Student Doctor Laptop Test 400
Online course teaches students about appropriate imaging use
July 19, 2023
Related Stories
2019 10 04 22 50 7439 Computer Lock Security 400
PACS/VNA
What's the best way to protect your PACS?
2016 09 02 09 36 05 93 Fda Logo V2 400
IS
FDA issues new cybersecurity warning
2019 04 04 22 35 3422 Malware 400
CT
AI malware deceives radiologists with fake tumors on CT
2018 01 29 23 04 1748 Danger Hazard Exlamation Sign
IS
'Orangeworm' hacker group targets healthcare with virus
More in IS
Can self-scheduling and referral close breast cancer screening gaps?
By Amerigo Allegretto
Online patient portal self-scheduling and self-referral methods can help mitigate health disparities in breast cancer screening, according to research published July 26 in the Journal of the American College of Radiology.
July 31, 2023
2017 03 30 15 16 56 745 Mammogram Calendar 400
Simple EHR intervention reduces unnecessary lower-back x-rays
By Kate Madden Yee
A relatively simple electronic health record (EHR) intervention reduces the incidence of unnecessary x-rays for patients presenting with low back pain, a study published July 28 in the Journal of the American College of Radiology has found.
July 30, 2023
2018 11 19 17 20 4754 Back Pain 400
Amazon Web Services releases imaging data platform
By AuntMinnie.com staff writers
Amazon Web Services has launched an imaging data platform for storing, accessing, and analyzing medical images at petabyte scale.
July 25, 2023
2020 01 28 20 45 5229 Cloud Computing Laptop 400
Online course teaches students about appropriate imaging use
By Amerigo Allegretto
An online elective course can effectively educate radiology students on the concept of appropriateness in medical imaging, according to an Israeli study published July 18 in Academic Radiology.
July 19, 2023
2021 06 16 23 10 5735 Student Doctor Laptop Test 400
CMS proposes radiology reimbursement cuts, AUC pause for 2024 MPFS
By Erik L. Ridley
In what has seemingly become an annual event, the U.S. Centers for Medicare and Medicaid Services (CMS) has once again included radiology reimbursement cuts in its Medicare Physician Fee Schedule (MPFS) Proposed Rule.
July 13, 2023
2019 07 31 17 01 7432 Medicare Puzzle 400
Summary reports improve CT planning for ovarian cancer surgery
By Kate Madden Yee
A synoptic, or summary radiology report, improves pretreatment CT planning for patients with advanced ovarian cancer compared to a simple structured report, according to a study published on July 12 in the American Journal of Roentgenology.
July 12, 2023
2023 07 12 19 50 6142 2023 07 12 Ajr Ct Ovarian 400
PET/CT shows value in patients with portal vein thrombosis
By Will Morton
PET/CT could be a valuable new imaging technique for distinguishing benign from malignant portal vein thrombosis in liver cirrhosis patients, according to a group in Egypt.
June 26, 2023
2023 06 22 23 04 9721 2023 06 23 Pet Pvt 20230622231003
Ransomware affects emergency radiology workflows
By Amerigo Allegretto
Ransomware attacks have a significant effect on emergency radiology workflows, as well as on acute care delivery and the personal well-being of healthcare providers, according to a study published June 15 in the Annals of Emergency Medicine.
June 19, 2023
2021 08 10 16 10 2928 Cybersecurity Lock V2 400
SIIM: Can Microsoft Teams lessen radiologist interruptions?
By Erik L. Ridley
AUSTIN, TX - Asynchronous forms of communication such as Microsoft Teams are much less disruptive to radiologists than phone calls or in-person visits, according to a talk delivered at the annual Society for Imaging Informatics in Medicine (SIIM) meeting.
June 18, 2023
2020 04 16 18 17 3383 Radiologist Ct Scan Brain Tumor 400
Turing debuts MRI visual feedback module at ISMRM 2023
By AuntMinnie.com staff writers
Neuroimaging software company Turing Medical Technologies (formerly Nous Imaging) used the venue of ISMRM 2023 in Toronto to launch FIRMM-pix, an in-bore visual feedback module designed to actively reduce head motion during brain MRI scans.
June 8, 2023
2023 01 30 21 50 9506 Computer Display Monitor Lab Mri V2 400
ImagineSoftware acquires Within Health
By AuntMinnie.com staff writers
Radiology billing and RIS developer ImagineSoftware has acquired artificial intelligence software developer Within Health. Terms of the deal were not disclosed.
May 23, 2023
2020 08 20 17 37 8876 Business Handshake Man 400
DetectedX touts learning platform success
By AuntMinnie.com staff writers
DetectedX is highlighting that the user base for its Radiology Online Learning Centre has exceeded 4,500 users, which the company says range from large radiology groups to individuals around the world.
May 3, 2023
2020 06 16 22 09 9134 Doctor Virtual Meeting Laptop Computer 400
Page 1 of 603
Next Page