But doesn't it always come down to the idiot that clicks on the link in the email?
Posts by gariac
3 publicly visible posts • joined 18 Aug 2023
US senators propose law to require bare minimum security standards
Ransomware can mean life or death at hospitals. DEF CON hackers to the rescue?
Hospitals tend to have PCs around that run obsolete operating systems. These are used with lab gear. You buy a box that costs as much as a house and the proprietary software runs on some version of windows that was common when the machine was built. In a few years, you are maintain an old version of windows. I have worked at semis with the same issue. The idea is to air gap them but that doesn't last long because it isn't handy.
You have to wonder what kind of IoT gear hospitals have. Remember how the Sands casino was hacked via a thermostat.
All these issues are totally possible to protect via routers, but you only need to make one mistake and the bad guys are in. Or the router itself is vulnerable.