11

Widely Used Chinese-Made Health Monitor Using 'Backdoor' To Send Patient Data To Chinese IP Address

Posted by freedomforall 2 weeks, 1 day ago to Technology
9 comments | Share | Flag

Excerpt:
"The US Cybersecurity and Infrastructure Security Agency (CISA) is warning that Contec CMS8000 devices, a widely used healthcare patient monitoring device, include a backdoor that quietly sends patient data to a remote IP address and downloads and executes files on the device.

Contec is a China-based company that specializes in healthcare technology, offering a range of medical devices including patient monitoring systems, diagnostic equipment, and laboratory instruments.

CISA learned of the malicious behavior from an external researcher who disclosed the vulnerability to the agency. When CISA tested three Contec CMS8000 firmware packages, the researchers discovered anomalous network traffic to a hard-coded external IP address, which is not associated with the company but rather a university.

This led to the discovery of a backdoor in the company's firmware that would quietly download and execute files on the device, allowing for remote execution and the complete takeover of the patient monitors. It was also discovered that the device would quietly send patient data to the same hard-coded address when devices were started."
SOURCE URL: https://www.bleepingcomputer.com/news/security/backdoor-found-in-two-healthcare-patient-monitors-linked-to-ip-in-china/


Add Comment

FORMATTING HELP

All Comments Hide marked as read Mark all as read

  • Posted by $ allosaur 2 weeks ago
    The CCP (Cancerous Chinese Party?) is ingeniously sneakily wicked.
    They have bought countless acres in the vicinity of our military bases.
    Then they used a bought and paid for Big Guy of the Biden Crime Family to float a spy balloon completely across the USA before "illegally" sneaking an army of military aged single guys across a "legalized" open border.
    Yesterday me dino learned they control the Panama Canal for installing "businesses" that control both ends and can shut the whole thing down any time the CCP wants to.
    Today I learn they can even spy on patient data in the USA.
    What other Schiff are they up to? Way plenty more, I'm sure.
    Why am I thinking of a USA being efficiently rotted from the inside out?
    Reply | Mark as read | Best of... | Permalink  
  • Posted by mccannon01 2 weeks ago
    Surprised, anyone? How many of us nowadays have "smart devices" that are linked to a made-in-China web site just to turn them on and set them up so they will function properly? The deal with the Marxist devil was made a long time ago and, IMHO, the only irksome jolt in this case is finding out you didn't click "agree" up front - but I'll betcha somebody at that healthcare facility did in your stead. Then you signed a paper giving them permission to treat you and "viola" pop goes your data.
    Reply | Mark as read | Best of... | Permalink  
  • Posted by mikeofallon 1 week, 6 days ago
    CCP has been doing this spying for many years and you'd think our agencies would be sending them fake data. AT LEAST from our military bases to the nearby Chinese farmland listening posts.
    Reply | Mark as read | Best of... | Permalink  
  • Posted by katrinam41 2 weeks ago
    Question. Is it my imagination, am I being paranoid when I think my Android phone seems to be taking pics of me? Every now and then the screen will flash for no reason...
    Reply | Mark as read | Best of... | Permalink  

FORMATTING HELP

  • Comment hidden. Undo