Claroty Team82 Highlights Riskiest Medical Device Exposures

“State of CPS Security: Healthcare Exposures 2025” Highlights the Most Urgent Healthcare Device and Network Vulnerabilities, Including OT Risks in Hospitals

Claroty, the cyber-physical systems (CPS) protection company, released new research on the riskiest exposures to connected medical devices most coveted for exploitation by adversaries. Based on analysis of over 2.25 million Internet of Medical Things (IoMT) and 647,000-plus operational technology (OT) devices across 351 healthcare organizations, the “State of CPS Security: Healthcare Exposures 2025” report found 89% of organizations have the top 1% of riskiest IoMT devices – which contain known exploitable vulnerabilities (KEVs) linked to active ransomware campaigns as well as an insecure connection to the internet – on their networks. These figures represent a highly targeted, critical area where most security teams should prioritize their remediation efforts.

Health Technology Insights: Health Technology Insights: Study Reveals Link Between Glucose Monitor Channels and Outcomes by CCS

As cyberattacks in the healthcare sector continue to rise in severity and the resources to prevent them remain limited, this report illuminates the medical assets at high risk for ransomware, extortion attacks, and attacks exploiting insecure internet connections. Claroty’s Team82 analyzed the challenges that hospitals and healthcare delivery organizations (HDOs) face when identifying which vulnerabilities and exposures in medical and OT devices to prioritize for remediation.

The report details risk exposures in several key areas—hospital information systems (HIS), IoMT devices like imaging, patient equipment, and hospital OT systems. With disruptions to operational continuity and patient care delivery being key concerns, the report focused on a specific combination of medical device risk factors: the presence of KEVs, those KEVs being linked to ransomware, and an insecure internet connection. This represents an apex of exposures that together pose a real, imminent danger to healthcare organizations. These are the most accessible entry points for threat actors into a healthcare network, and are present in nearly every organization analyzed. Taking an exposure management-based approach to risk reduction yields a subset of devices that is manageable enough for organizations to prioritize actual, not theoretical, areas of risk.

Health Technology Insights: Health Technology Insights: Evident Vascular Raises Series B to Advance AI Ultrasound Technology

Key Findings:

9% of IoMT devices contain confirmed KEVs in their systems, impacting 99% of organizations.
1% of IoMT devices carry KEVs linked to active ransomware campaigns and insecure internet connectivity, impacting 89% of organizations.
8% of imaging systems (X-rays, CT scans, MRI, ultrasound, and more) have KEVs linked to ransomware and insecure internet connectivity—making this the riskiest medical device category—impacting 85% of organizations.
20% of HIS, which manage clinical patient data, as well as administrative and financial information, have KEVs linked to ransomware and insecure internet connectivity, impacting 58% of organizations.

“Hospitals are under immense pressure to digitally transform while ensuring the security of critical systems that support patient care,” said Ty Greenhalgh, Industry Principal for Healthcare at Claroty. “Cybercriminals, especially ransomware groups, exploit outdated technology and insecure connectivity to gain footholds in hospital networks. To counter these threats, healthcare security leaders must take an exposure-centric approach—prioritizing the most critical vulnerabilities and aligning remediation efforts with industry guidelines like the HHS’ HPH Cyber Performance Goals—to protect patient safety and ensure operational continuity.”

Health Technology Insights: 3Shape Unveils TRIOS 6 Scanner and TRIOS Dx Plus Software

To participate in our interviews, please write to our HealthTech Media Room at sudipto@intentamplify.com

Source – PR Newswire

Tags: Claroty's Team82, healthcare, medical device, Research, State of CPS Security: Healthcare Exposures 2025

HealthTech Media Room

HealthTech Media Room is a leading B2B media publication platform providing in-depth coverage of the rapidly evolving healthcare technology and academic research sectors. Specializing in key focus areas such as MedTech, Pharma, Digital Health, Health IT, and Biotech, HealthTech Media Room delivers the latest news, trends, and insights across the entire HealthTech landscape. From breakthrough medical devices and innovative pharmaceuticals to cutting-edge digital health solutions, the platform highlights key players, strategic partnerships, and transformative technologies shaping the future of healthcare. Serving as a trusted resource for industry professionals, thought leaders, and healthcare organizations, HealthTech Media Room is dedicated to driving conversations and knowledge sharing in the global HealthTech community.