Get our free email newsletter

FDA Warns of Medical Device Cyber Vulnerabilities

The U.S. Food and Drug Administration (FDA) has issued an alert to medical device manufacturers and users regarding a cybersecurity vulnerability identified in connection with a widely used web-based software technology.

The FDA alert follows an advisory issued by the federal Cybersecurity and Infrastructure Security Agency (CISA) that identified several specific areas of vulnerability to cyberattacks related to the use of Axeda agent and Axeda Desktop Server. The Axeda agent and Axeda Desktop Server are remote connectivity software applications used to allow multiple parties to securely view and operate the same remote desktop through the Internet and are reportedly used in connection with numerous medical devices across several different device manufacturers.

The specific vulnerabilities in the Axeda software identified in the CISA advisory include:

- Partner Content -

How To Work Safely with High‑Voltage Test & Measurement Equipment

This white paper describes an alternative approach to calibrating high-voltage systems and provides meter and probe safety considerations and general guidance for safely operating high-voltage equipment.
  • Use of hard-coded credentials
  • Missing authentication for critical functions
  • Exposure of sensitive information to unauthorized parties
  • Improper check or handling of exceptions conditions

According to the FDA Cybersecurity Alert, PTC (the company that owns and supports the Axeda agent and Axeda Desktop Server) recommends that manufacturers whose devices utilize the software take several specific steps to mitigate the cyber vulnerability risk, including upgrading to the latest version of the Axeda agent and providing a unique password for each unit running the Axeda Desktop Server.

Read the FDA’s alert regarding cyber vulnerabilities related to the use of the Axeda agent or Axeda Desktop Server.

Read the ICS Advisory on the Axeda agent and Axeda Desktop Server.

Related Articles

Digital Sponsors

Become a Sponsor

Discover new products, review technical whitepapers, read the latest compliance news, trending engineering news, and weekly recall alerts.

Get our email updates

What's New

- From Our Sponsors -

Sign up for the In Compliance Email Newsletter

Discover new products, review technical whitepapers, read the latest compliance news, trending engineering news, and weekly recall alerts.