In the WHAT HEALTH !? newsletter, find the latest news that has made the buzz, cutting-edge trends and groundbreaking innovations in the digital health field.
On the headlines : The National Test Institute for Cybersecurity (NTC) conducted an in-depth security analysis of three hospital information systems in Switzerland. More than 40 vulnerabilities with medium to high severity were identified, with three presenting the most critical issues. The security tests revealed fundamental architectural problems, inadequate communication encryption, vulnerable connected systems, and insufficient separation between test and production environments.
The three main hospital information systems examined were:
- KISIM by Cistec (used in about 30 medium and large hospitals)
- inesKIS by ines (primarily used in small and medium-sized facilities)
- Epic (currently used by Lucerne Cantonal Hospital and Insel Gruppe in Bern)
Most significant vulnerabilities were either eliminated or mitigated, but some major architectural problems will require several years to resolve completely.
The study highlights a general lack of cybersecurity awareness in the healthcare sector, with some manufacturers struggling to transparently communicate detected vulnerabilities to their clients.
➡️ Find all the latest news in the columns of your weekly.
