Healthcare IoT: The IoMT Attack Surface

The Internet of Medical Things (IoMT) saves lives but creates risks. A compromised MRI machine is not just a data breach; it's a patient safety issue. This guide explores the protocols (DICOM, HL7) and vulnerabilities common in hospital networks.

01 //Legacy Debt

Hospitals run equipment for 15+ years. It is common to find MRI machines running Windows 7 or even XP. These cannot be patched. They must be isolated in a VLAN with strict ACLs—only allowing DICOM traffic to the PACS server and nothing else.