"Researchers Find More Devices, Vendors Vulnerable to Ripple20"

In June, JSOF researchers disclosed a set of 19 vulnerabilities, dubbed "Ripple20," that affect millions of connected devices, including those used in the healthcare industry. These vulnerabilities were found in Treck's widely adopted low-level TCP/IP software library. The exploitation of Ripple20 vulnerabilities could enable information leakage, device disruption, remote access for hackers from outside the network, and more. Infusion pumps were among the devices discovered to be vulnerable to Ripple20, posing a significant threat to safety as these devices deliver doses of medicine directly to patients. According to a new report recently released by Tenable Research and developed in collaboration with JSOF, 47 more devices, some from 34 new vendors, have been identified as vulnerable to Ripple20. The devices most at risk to Ripple20 are those found in the healthcare sector. This article continues to discuss what causes most of the Ripple20 vulnerabilities, the malicious activities that hackers could perform through the abuse of these vulnerabilities, and the identification of additional devices potentially impacted by Ripple20. 

HealthITSecurity reports "Researchers Find More Devices, Vendors Vulnerable to Ripple20"