Key Takeaways: The FDA is asking medical device manufacturers to submit VEX (Vulnerability Exploitability eXchange) files alongside SBOMs in some premarket cybersecurity submissions. VEX artifacts document whether known vulnerabilities in SBOM-listed components are...
Anyone working in software development in the Department of War over the past five years has seen the requirements landscape shift significantly. From the introduction of SBOM mandates to the Software Fast Track (SWFT) initiative launched in May 2025, the DoD is...
Key Takeaways: Legacy medical devices running old code create growing cybersecurity and patient safety risks Ransomware attacks on hospitals show how downtime directly impacts clinical care Security transparency and SBOMs are now key to winning healthcare procurement...
Key Takeaways: Legacy devices can’t be patched easily, but compensating controls provide alternatives. SBOMs are critical for transparency and accountability. The FDA now mandates secure development and life cycle planning. Cybersecurity and patient safety are...
Medical device software vulnerabilities are on the rise, leaving hospitals and healthcare networks increasingly exposed. Outdated software, insecure connections, and the growing adoption of IoMT devices make them easy targets for cyberattacks. High-profile...
EU CRA, FDA, and Cyber Regulations The regulatory landscape for product security has fundamentally shifted. What was once a “nice-to-have” consideration has become mandatory compliance across industries, with cybersecurity now sitting at the center of product...
