Two credential reuse vulnerabilities called MDHexRay have been detected in twenty four separate product families in GE Healthcare's imaging business. These could be exploited to obtain patient identifiable information.
The following platforms are known to be affected:
MDHexRay affects more than 20 product families across GE Healthcare's advanced visualisation, CT, interventional, mammography, MRI, PET, ultrasound, and x-ray modalities.
GE Healthcare have confirmed they are contacting customers to change the default credentials used on their estates. Affected organisations are encouraged to log in to their GE Healthcare Product Security Portal accounts to ensure these are changed immediately.
Affected organisations are also encouraged to restrict and monitor the following ports:
- FTP (port 21)
- SSH (port 22)
- Telnet (port 23)
- REXEC (port 512)
Indicators of compromise
Definitive source of threat updates
Last edited: 9 December 2020 2:57 pm