AI-Based Culinda Solution Integrates ECFIRST Specialized Cyber Assessment Service
Culinda Inc., a medical IoT security company based in Irvine, CA, and ecfirst, a leading healthcare cybersecurity services firm, announced the execution of an agreement to collaborate on Culinda’s AI-based medical security solution for health systems and hospitals across the United States.
“I am pleased to announce that Culinda has chosen ECFIRST as a partner for cybersecurity solutions for all biomedical devices in hospitals across the United States,” said Culinda co-founder and CEO, Sreekant Gotti.
With 15 to 20 connected medical devices in a typical hospital room, and an average of 6.2 vulnerabilities on each medical device, the risk to patients and the business is significant.
Consider the facts about the risk associated with medical devices found in the Medical Device Report, Cybersecurity Ventures, February 19, 2019:
- The global market for medical device technologies is expected to exceed $674 billion by 2022. The U.S. represents around 40% of the global medical device market.
- The number of IoT devices in a hospital can be more than twice the number of traditional networked devices, such as laptops and smartphones.
- 60% of medical devices are at the end-of-life stage, with no patches or upgrades available.
- Biomedical devices in use by hospitals and other healthcare organizations average 20+ years of use per device, making them prime targets for hackers.
- Gartner predicts that by 2020, more than 25% of cyber-attacks in healthcare delivery organizations involves the IoT.
“With deep expertise delivering HIPAA, NIST, and for the past few years HITRUST cyber solutions to healthcare organizations across the U.S., ECFIRST deepens its value to the industry by integrating Culinda’s plug-n-play, machine learning based medical IoT security solution,” said Ali Pabrai, ECFIRST chief executive. “Culinda’s implementation automates the identification, categorization and prioritization of all risks and their associated vulnerabilities, thereby providing deeper capability for monitoring and managing cyber risk.”