lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list]
From: Michael.Simpson at inveresk.com (Michael Simpson)
Subject: FDA Approves Use of Chip in Patients ? HIPAA woes?

snip 

The article goes on to mention the fact that an innacurate reading could 
be produced in an MRI scan, etc if malware affected the hospital's network 
and as a result any databases or devices connected to it. Just illustrates 
a need to ensure that health care facilities have tight security to 
minimize the issue of tampering of data in order to prevent mis-diagnosis, 
etc.

/snip

if?

http://news.bbc.co.uk/2/hi/uk_news/scotland/3174173.stm


  And the haha-only-serious thing about this is the fact that the man 
responsible for the mess that is that hospital's IT system was then 
promoted to be the lead clinician for NHS IT in the country. 

whoop-di-do 

You get promoted to the level of your incompetence within the state in UK

In most hospitals in scotland because we expect the POS systems to fail 
regularly/ lose data like a drunk losing brain cells,  we keep all the 
paper systems in place - the courts won't place any trust in our 
electronic stuff anyway. **BUT** at yorkhill at that time you couldn't 
pass wind without computer based authorisation so having the system down 
for that length of time SERIOUSLY impinged on the medical staffs' ability 
to do their job.

which means that patients (children) were put in harm's way by IT 
management incompetence.

Did it change anything, 

errr..... no.

10 years ago it was all *nix now it is all windows including a hell of a 
lot of embedded win95 with "functional" tcp stacks.

Sorry about the ranting but this topic is something that has been getting 
on my tits in a big way for some time.

http://www.theregister.co.uk/2004/06/25/letters_2506/

guess which letter i wrote after blaster took the hospital down (again) - 
not reported in news at the time but cleverly covered up.


let's not even start about the hospitals that think they are running IPX 
but don't know that there is an unprotected inet facing socks proxy 
sitting on their gateway leading to an "unknown to IT" IP based network 
for playing LAN games on and presumably getting pwned with....



mikie



Powered by blists - more mailing lists