Where there is a network, there are network security risks. With the increase of networked medical devices, the associated network security risk is also rising, and has become a major topic in the whole network security field.
In the past few years, cyber attacks have shown a rapid upward trend. According to statistics, at present, a hacker attack will occur in an average of 39 seconds around the world, and medical devices have become an important target of hacker attacks.
With more and more medical devices using wireless communication technology, medical devices are in a very dangerous situation. These wireless signals can easily be intercepted, interfered, hijacked and reprogrammed. Once this happens, these life-saving medical devices will become body bombs.
In 2017, FDA recalled 465000 pacemakers from Abbott due to security vulnerabilities. In March this year, the U.S. Department of Homeland Security (DHS) warned that Medtronic’s implantable heart devices are vulnerable to network security attacks, mainly because these devices use unencrypted signals.
According to Gartner, by 2020, 25% of healthcare attacks will come from Internet of things devices. Sans reports that about 17% of network attacks in hospitals come from medical terminals, and 77% of hospitals say that the security of medical equipment is their most concern.
The network security of medical devices has become one of the important problems to be solved urgently in the medical Internet of things. It is gratifying that more and more large technology companies and medical start-ups are trying to find safer medical device solutions through the development and integration of artificial intelligence, Internet of things, blockchain and other technologies. Of course, these solutions are not only applied to the medical industry, but also can be used in industries such as industry, energy and public utilities.
1. Cylera, an AI based network security platform for medical devices
Cylera, a New York start-up founded in 2017, is an AI based Internet of things and medical device network security company. The mission of the company is to protect medical institutions and patients from malicious harm from others.
Through the company’s unique patented technology, medcommand platform provides users with a patient-centered Internet of things security solution for health care, so as to realize the intelligent management and operation of medical devices, continuously provide risk analysis, and actively strengthen and Real-time Threat defense.
At present, the company has obtained a financing of US $5.5 million, and Samsung next has also participated in the company’s investment.
2. Agent free Internet of things security solution armis security
Founded in 2015, Silicon Valley startup armis security provides users with an agent-free Internet of things security solution that allows enterprises to view and control any device or network in real time.
Armis platform monitors all devices in the wireless environment, analyzes their behavior, and automatically determines the threat before the device is connected to the network, so as to control the allowed connection and check the traffic to ensure the security of the device.
In addition, the platform can automatically disconnect and isolate any suspicious malicious hardware without overwriting any existing access control policies in the network.
The company’s solutions are applicable to various consumer electronics, HVAC systems, industrial and medical equipment, digital voice assistants, VOIP phones, etc. It is reported that armis is currently monitoring 46 million devices worldwide and has reached cooperation with more than a quarter of Fortune 100 enterprises.
In April this year, the company obtained a round C financing of US $65 million led by Sequoia Capital, with a total financing of US $112 million.
3. Senrio, Internet of things security platform based on adaptive algorithm
Senrio, a start-up company headquartered in Portland, Oregon, was founded in 2015 to provide customers with automated analysis based on adaptive algorithms and device specific behavior.
The platform can identify, classify and monitor all embedded devices in the network in real time, and generate visual dynamic records of the information of all identified network devices in the customer’s IT environment.
At present, the company has provided network security services for customers such as Samsung, Google, HP blackberry, Comcast xfinity and the U.S. National Security Agency.
4. Medical device data security as a service medcrypt
Medcrypt, a California start-up, was founded in 2016 to provide users with medical device data security as a service.
From medical imaging devices to surgical robots, to implantable devices such as cardiac pacemakers, medcrypt aims to ensure that medical devices can only work according to instructions from reliable sources through data encryption, signature verification and behavior monitoring.
In May this year, the company obtained a round of financing of US $5.3 million led by section 32, and has raised US $8.4 million in total.
5. Internet of things security platform cybeats from the inside out
Founded in 2016, cyberbeats, an Ontario startup in Canada, provides network security and firmware lifecycle management services for the Internet of things industry.
The company’s platform adopts a “inside out” approach to network security, and implants a “micro agent” in the Internet of things environment to make up for the shortcomings of existing medical equipment software and hardware. The micro agent can immediately detect and prevent the threats found in the firmware, so as to reduce the downtime of the system under attack.
Cybeats has developed “build and maintain a dynamic model of healthy device behavior” to detect abnormal behavior, rather than relying on external threat and vulnerability databases.
The SaaS cloud ecosystem developed by cybeats can analyze the data of infected devices and provide customers and IT professionals with a complete threat diagnosis and treatment plan, thus saving time and cost.
In December 2018, the company completed the seed round financing of US $3 million led by ripple ventures.
6. Cynerio, the security platform of the medical Internet of things (iomt)
Cynerio, an Israeli start-up founded in 2017, uses machine learning algorithms to help medical enterprises protect the network security of patient data and networked medical devices.
The platform uses machine learning algorithm to analyze medical workflow, automatically discover medical devices on any specific network, draw risks and vulnerabilities of devices, detect abnormal activities, and block suspicious communication.
At present, Rambam hospital and Tel Aviv medical center in Israel are using the company’s technology to protect sensitive medical data. In January this year, the company obtained a seed round financing of US $7 million.
7. Risk based security, a network security service provider based on risk identification
Risk based security, a Virginia start-up, was established in 2011 to provide users with risk identification and security management tools through interactive dashboard and data analysis.
It is said that the company has the world’s largest network vulnerability database, including more than 199000 security vulnerabilities, covering more than 47000 products. By automatically analyzing the details of data leakage, risks can be quickly identified.
At present, the company’s customers include insurance companies, manufacturers, banks, pharmaceutical companies, health care companies, life sciences and other technical service providers.
8. Internet of things security platform xage security based on blockchain
Xage security, a Silicon Valley start-up, was founded in 2017 to provide users with blockchain based network security solutions.
The platform of xage security requires an approved MAC address and authorized fingerprint to ensure that only authorized machines and personnel enter the system. At the same time, the certificate is installed on the device to ensure that the machine requesting access has passed the real authentication and has the authorization of relevant departments.
In case of network attack, the platform will isolate the threat by locking the affected sectors to prevent the risk from spreading to the whole network. The platform is applicable to energy, telecommunications, public utilities, construction management, manufacturing, health care and other fields. At present, more than 1000 enterprises around the world have used its security platform.
The company has raised US $16 million in total, and both Ge and Saudi Aramco energy ventures have participated in the company’s investment.
9. AI based medical Internet of things security platform cybermdx
Cybermdx, a New York start-up, was founded in 2017 to provide users with automated medical Internet of things (iomt) security management solutions. The company aims to create an “overall network security solution” by building a system that can automatically identify, alarm and protect the security of each device connected to the hospital network.
The mdefend network security software product developed by the company can protect medical devices and clinical data without installing anything on medical devices. Through AI technology with autonomous learning ability, network vulnerabilities can be analyzed and risks can be prevented, so as to protect the data communication security of hospital and clinical network.
In July 2018, the company obtained a round a financing of US $10 million invested by pitango venture capital and qure ventures.
10. AI based Internet of things security guard zingbox
Zingbox, a silicon valley startup founded in 2014, is an Internet of things infrastructure security service provider.
The company has developed a product called IOT guardian to analyze network traffic through machine learning, judge the operation of equipment or software, and automatically report risks and protect them when abnormal activities are found. According to the company, the personalization of each connected device can be identified through “unsupervised deep learning solution”.
At present, the company has protected the security of more than 11.2 million devices, and the amount of data analyzed and processed every day has reached 62tb. The company has raised a total of US $23.5 million, and Dell has also participated in the investment in the company.