Virta Labs Blog


Between the Lines at HIMSS18

Posted by Ben Ransford on Mar 12, 2018 9:08:09 AM

Cybersecurity was a big theme at this year's HIMSS expo. Beckers' summary is nice.

On the one hand, everybody wants their healthcare organizations to act faster on cybersecurity. The drumbeat keeps getting louder, and everyone hopes they won't be the next to be in the news. Some analysts say the reputational cost of a breach can be ten times the size of initial fines over an uncomfortable period of years.

On the other hand, organizations of every size are having a hard time getting started. The number one reason? Budget. Security ROI arguments are famously hard to make, because what's the monetary value of something bad not happening, when it might not have happened anyway, for free? In the battle of abstract versus concrete, concrete always wins.

Read More

Topics: Medical Device Security, Healthcare IT

Virta Labs at AAMI 2017: Bridging the Gap

Posted by Ben Ransford on Jun 12, 2017 7:53:10 PM

Clinical engineers (CE) and biomeds need to be in the loop if healthcare organizations can hope to address cybersecurity risks.

Read More

Topics: Inventory Management, Clinical Cybersecurity, Healthcare IT

How health systems recognize cybersecurity awareness month: medical device security webinars

Posted by Kevin Fu on Oct 13, 2016 7:30:48 PM

How is your health system recognizing October as National Cybersecurity Awareness Month? Last year, we were invited to speak in an exclusive webinar for clinical engineers and IT staff at the 12 hospitals within the University of California Health System. This year, we help hospitals recognize National Cybersecurity Awareness Month in two ways. First, we co-authored a commentary in Modern Healthcare with our colleagues from AAMI, UMHS, and BIDMC on why hospitals need better cybersecurity, not more fear. Second, we decided to make a live webinar available to any health system! To learn more, sign up for our Halloween Medical Device Security webinar. 
Register for Free Webinar

Read More

Topics: Medical Device Security, Healthcare IoT, Healthcare IT, Clinical Information Security, Connected Medical Devices

Back to Business: Continuity of Clinical Operations

Posted by Ben Ransford on Sep 6, 2016 12:53:33 PM
Virta Labs provides a managed cybersecurity service to help hospitals manage their clinical assets and ensure continuity of operations. But our team has an interesting history: we coauthored the first research on cardiac implant security in 2008 and have published extensively on medical device security since then.  As a result, we recently received a flood of technical questions unrelated to our normal menu of services. Virta Labs engineers took time away from building BlueFlow to provide a seminar, white paper, and consultations and to develop our own scientific experimental methods. We're glad that the industry is developing interest in improving medical device security as we've urged for nearly a decade. While this was a necessary and important diversion for us, we are getting back to our core business and clinical tests of BlueFlow.

We have no financial relationship with Muddy Waters Research LLC, St. Jude Medical, or MedSec Ltd. We plan to release a peer-reviewed report shortly so that the greater community may analyze our findings and results.
Read More

Topics: Medical Device Security, Clinical Engineering, Healthcare IT, Asset Discovery, Medical Device Risk Scoring, Shadow IT, Vulnerability Scanning, Clinical Databases, Medical Device Risk Assessments

FDA's Draft Guidance: The Long and the Short Of It

Posted by Ben Ransford on Jan 20, 2016 11:28:41 AM

People have been asking us all week for our opinions on the FDA's new postmarket cybersecurity draft guidance.  All three of Virta Labs' founders have been active in this area, with extensive research in applied security and longstanding support for collaborative efforts:

... among other things.  And we're thrilled to see that the FDA has taken the significant step of issuing this document.

We read the draft guidance so that you could tl;dr and get back to your own job.  Here are the highlights, as we see them.

Read More

Topics: FDA, Healthcare Cybersecurity, Medical Device Security, Clinical Engineering, Healthcare IT, Clinical Information Security

Internships at Virta Labs

Posted by Ann Gookin on Jan 15, 2016 1:37:34 PM

Recently we've been fielding a lot of questions about internships at Virta Labs ('tis the season), and we wanted to share some answers to the questions we hear most often.  We're always happy to hear from prospective candidates. tl;dr: get in touch if you're amazing and you want to take ownership of a meaningful project during an internship.

Also, keep your eyes peeled in the coming days for an interview with hacker extraordinaire and current intern Jessica Wilson.

Read More

Topics: RECRUITING, Healthcare Cybersecurity, Clinical Security, Healthcare IT, Internet of Things / IoT

New year, new blog, and big news!

Posted by Ann Gookin on Jan 13, 2016 4:02:48 PM

Happy 2016!

Read More

Topics: SXSW, Healthcare Cybersecurity, NSF SBIR, Clinical Security, Healthcare IT