Practical (In)Security of IoT and Medical IT Systems

By /

Listen to this Post

The thesis of Prof. Dr.-Ing. Christoph Saatjohann, titled “Practical (In)Security of IoT and Medical IT Systems”, explores critical vulnerabilities in IoT and medical ecosystems through six academic papers. Key focus areas include:

  • ⌚ STALK: Security Analysis of Smartwatches for Kids
  • 💔 Listen to Your Heart: Evaluation of the Cardiologic Ecosystem
  • ⛑️ Security of Medical Protocols in Hospitals
  • 🤒 SICKPATH: Simulating Cyber Attacks on Patient Treatment
  • 🚘 Grand Theft App: Digital Forensics of Vehicle Assistant Apps

Download Full Paper (PDF)

You Should Know:

1. Analyzing Smartwatch Vulnerabilities (STALK)

  • Use Wireshark to intercept Bluetooth Low Energy (BLE) traffic from smartwatches: 
    sudo wireshark -k -i bluetooth
  • Check for unencrypted data leaks with Btlejack: 
    btlejack -c -a <TARGET_MAC>

2. Testing Medical Protocol Security

  • Simulate HL7/MLLP protocol attacks with Metasploit: 
    use auxiliary/scanner/healthcare/hl7
set RHOSTS <hospital_IP>
run
  • Detect weak DICOM configurations using dcmtk: 
    dcmdump <DICOM_IP> --scan-directories

3. Vehicle App Forensics (Grand Theft App)

  • Extract APK data from connected car apps: 
    apktool d car_app.apk -o output_dir
  • Analyze network traffic with mitmproxy: 
    mitmproxy -p 8080 --mode transparent

4. Simulating Hospital Cyberattacks (SICKPATH)

  • Use ClinicAV (a hospital attack simulator): 
    python3 clinicav.py --target <hospital_IP> --attack ransomware
  • Check for exposed PACS systems with nmap: 
    nmap -p 104,11112 --script dicom-ping <IP_RANGE>

What Undercode Say:

Medical IoT and automotive systems are prime targets due to legacy protocols and poor encryption. Key mitigations:
– Patch Management: Use `apt-get upgrade` (Linux) or `wuauclt /updatenow` (Windows) for medical devices.
– Network Segmentation: Isolate IoT devices via VLANs (vconfig add eth1 10).
– Forensic Readiness: Log critical events with journalctl -u medical_service --since "1 hour ago".
– Car App Security: Block unauthorized OTA updates via firewall (iptables -A OUTPUT -p tcp --dport 443 -j DROP).

Expected Output:

A hardened IoT/medical infrastructure with monitored BLE traffic, encrypted DICOM data, and segmented networks.

References:

Reported By: Alexrweyemamu Cybersecurity – Hackers Feeds
Extra Hub: Undercode MoN
Basic Verification: Pass ✅

Join Our Cyber World:

💬 Whatsapp | 💬 TelegramFeatured Image

Related Posts: