Your Ultimate Information Platform

PwnedPiper threatens 1000’s of hospitals worldwide, patch your techniques now



9 vital vulnerabilities in a preferred hospital pneumatic tube software program may give attackers management of infrastructure and permit them to launch extra assaults that cripple healthcare operations.


Picture: ZDNet

The software program used to regulate pneumatic tubes in over 3,000 hospitals around the globe has 9 vital vulnerabilities that might halt hospital operations if exploited by a savvy attacker. 

Found by researchers at safety platform supplier Armis and dubbed PwnedPiper, the vulnerabilities are within the Nexus Management Panel software program utilized by Translogic pneumatic tube techniques (PTS) constructed by Swisslog Healthcare. Tube techniques in hospitals are generally used to ship medication, transport blood and different important medical provides, and ship lab samples throughout buildings that might take appreciable time to ship on foot. In line with Swisslog Healthcare, their automated transport techniques are utilized in over 2,300 hospitals in North America and over 3,000 worldwide.

SEE: Safety incident response coverage (TechRepublic Premium)

PTS are sometimes web linked, Armis mentioned, however “regardless of the prevalence of those techniques, and the reliance of hospitals on their availability to ship care, the safety of those techniques has by no means been totally analyzed or researched.” 

5 of the vulnerabilities in PwnedPiper contain distant code execution, which an attacker may use to entry a hospital community after which take over Nexus stations. Management over a Nexus station can be utilized to reap knowledge on hospital workers and pc techniques, in addition to purchase community layouts used to maneuver laterally and launch ransomware assaults.

Armis describes the 9 vulnerabilities it uncovered, as “vital.” They embody:

In line with the corporate, a profitable attacker may management your entire tube community and its stations by exploiting the Nexus Management Panel software program. As well as, Armis warns that an attacker “may allow subtle ransomware assaults that may vary from denial-of-service of this vital infrastructure to full-blown man-in-the-middle assaults that may alter the paths of the networks’ carriers, leading to deliberate sabotage of the workings of the hospital.”

“Understanding that affected person care relies upon not solely on medical units, but in addition on the operational infrastructure of a hospital is a vital milestone to securing healthcare environments,” mentioned Nadir Izrael, co-founder and CTO at Armis.

SEE: Methods to handle passwords: Greatest practices and safety ideas (free PDF) (TechRepublic)

The variety of assaults in opposition to hospitals and medical amenities has been on a gradual improve because the outbreak of the COVID-19 pandemic. A number of hospitals have confronted ransomware assaults, portray the specter of ransomware and cyberattacks in opposition to the healthcare business in stark gentle: It isn’t a risk, it is actuality.  

Swisslog will launch patch v7.2.5.7

Armis instructed Swisslog about its Nexus PTS management software program vulnerability on Might 1, 2021, and stories that it has been working with the corporate to make sure patches can be found and correct safety measures are clearly outlined for purchasers. Consequently, Swisslog has launched a safety advisory and is predicted to launch a patch for the disclosed vulnerabilities on August 2. In line with the corporate, this patch, v7.2.5.7, “will resolve all disclosed vulnerabilities, besides the unsigned firmware improve vulnerability (CVE-2021-37160), which shall be resolved in a future launch.”

Armis’ Ben Seri and Barak Hadad, the researchers behind the report, shall be presenting their discoveries at Black Hat USA, and Armis has revealed data for hospitals on the right way to combat PwnedPiper.

Additionally see


Leave A Reply

Your email address will not be published.