, 7 tweets, 2 min read Read on Twitter
When Hillary Clinton stumbled/coughed thru '16 presidential run, rumor spread about her health, until her doctor said a CT scan of her lungs showed she just had pneumonia. But what if hackers had altered those scans to inject fake cancerous nodules onto it?washingtonpost.com/technology/201…
Researchers in Israel have created proof-of-concept malware that alters CT and MRI scans in real-time on hospital networks to add realistic, malignant-seeming growths to scans before radiologists/doctors examine them or remove real cancerous nodules/lesions without detection.
In blind study using real CT lung scans, 70 of which were altered by their malware, they tricked three skilled radiologists into misdiagnosing patients nearly every time. Even a state-of-the-art lung-cancer screening software tool was tricked by their cancer-producing malware.
Attackers could alter random scans to create chaos in hospitals or mistrust in diagnoses, or target specific patients, such as a presidential candidate to trick them into believing they have a serious illness and cause them to withdraw from a race to seek treatment.
The attackers could even alter follow-up scans after treatment begins to falsely show tumors spreading or shrinking. Or they could alter scans for patients in drug and medical research trials to sabotage the results.
Here's a video showing how the researchers' malware works and how they were able to slip it onto the network of a hospital in Israel to test their attack - it took just 30 seconds to install with physical access, but could be done remotely as well
The problem lies in PACS networks hospitals use to transmit scans unencrypted/unsigned. In a Shodan search, the researchers found at least 800 PACS networks directly accessible via internet. DHS issued alerts last yr showing security probs w/PACS networks ics-cert.us-cert.gov/advisories/ICS…
Missing some Tweet in this thread?
You can try to force a refresh.

Like this thread? Get email updates or save it to PDF!

Subscribe to Kim Zetter
Profile picture

Get real-time email alerts when new unrolls are available from this author!

This content may be removed anytime!

Twitter may remove this content at anytime, convert it as a PDF, save and print for later use!

Try unrolling a thread yourself!

how to unroll video

1) Follow Thread Reader App on Twitter so you can easily mention us!

2) Go to a Twitter thread (series of Tweets by the same owner) and mention us with a keyword "unroll" @threadreaderapp unroll

You can practice here first or read more on our help page!

Follow Us on Twitter!

Did Thread Reader help you today?

Support us! We are indie developers!


This site is made by just three indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3.00/month or $30.00/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!