On Jan. 30, The Cybersecurity Infrastructure & Security Agency (CISA) released an alert, complemented by a notification from the US FDA suggesting that the Contec CMS8000 patient monitor and OEM white ...

Chinese-Made Patient Monitor Contains a Secret Backdoor The backdoor on Contec CMS8000 patient-monitoring devices could allow an IP address at an unnamed university to remotely download and execute ...

Update 2/4/25: A new report from Claroty states that they purchased the Contec CMS8000 device and, after analyzing its firmware, believe the behavior described by CISA and the FDA is actually an ...

The Food and Drug Administration has released a safety communication about the cybersecurity vulnerabilities of certain patient monitors from Contec and Epsimed. The notice, which the FDA published ...

A hidden backdoor function embedded in the firmware of the Contec CMS8000 patient monitor has been identified by the US Cybersecurity and Infrastructure Security Agency (CISA). The vulnerability, ...

The US Food and Drug Administration (FDA) has issued guidance over potential cybersecurity vulnerabilities with Contec’s CMS8000 patient monitor and the Epsimed MN-120 (a relabelled version of the ...

Last week, the U.S. Cybersecurity and Infrastructure Security Agency (“CISA”) and the U.S. Food and Drug Administration (“FDA”) released warnings about an embedded function they found in the firmware ...

The US-based Cybersecurity & Infrastructure Security Agency recently released an investigation report involving three firmware versions used in a patient monitoring system called Contec CMS8000, used ...

A medical device used in hospitals has been found hosting a backdoor, paving the way for an unauthorized user to remotely control and tamper with the equipment. The threat was discovered in three ...