Eccouncil Exam 312-50 Topic 9 Question 79 Discussion

Actual exam question for Eccouncil's 312-50 exam

Question #: 79
Topic #: 9

You are a cybersecurity consultant for a healthcare organization that utilizes Internet of Medical Things (loMT) devices, such as connected insulin pumps and heart rate monitors, to provide improved patientcare. Recently, the organization has been targeted by ransomware attacks. While the IT infrastructure was unaffected due to robust security measures, they are worried that the loMT devices could be potential entry points for future

attacks. What would be your main recommendation to protect these devices from such threats?

AImplement multi-factor authentication for all loMT devices.

BDisable all wireless connectivity on loMT devices.

CUse network segmentation to isolate loMT devices from the main network.

DRegularly change the IP addresses of all loMT devices.

Show Suggested Answer

Suggested Answer: C

Internet of Medical Things (IoMT) devices are internet-connected medical devices that can collect, transfer, and analyze data over a network. They can provide improved patient care and comfort, but they also pose security challenges and risks, as they can be targeted by cyberattacks, such as ransomware, that can compromise their functionality, integrity, or confidentiality. Ransomware is a type of malware that encrypts the victim's data or system and demands a ransom for its decryption or restoration. Ransomware attacks can cause serious harm to healthcare organizations, as they can disrupt their operations, endanger their patients, and damage their reputation.

To protect IoMT devices from ransomware attacks, the main recommendation is to use network segmentation to isolate IoMT devices from the main network. Network segmentation is a technique that divides a network into smaller subnetworks, each with its own security policies and controls. Network segmentation can prevent or limit the spread of ransomware from one subnetwork to another, as it restricts the communication and access between them. Network segmentation can also improve the performance, visibility, and manageability of the network, as it reduces the network congestion, complexity, and noise.

The other options are not as effective or feasible as network segmentation. Implementing multi-factor authentication for all IoMT devices may not be possible or practical, as some IoMT devices may not support or require user authentication, such as sensors or monitors. Disabling all wireless connectivity on IoMT devices may not be desirable or realistic, as some IoMT devices rely on wireless communication protocols, such as Wi-Fi, Bluetooth, or Zigbee, to function or transmit data. Regularly changing the IP addresses of all IoMT devices may not prevent or deter ransomware attacks, as ransomware can target devices based on other factors, such as their domain names, MAC addresses, or vulnerabilities.Reference:

What Is Internet of Medical Things (IoMT) Security?

5 Steps to Secure Internet of Medical Things Devices

Ransomware in Healthcare: How to Protect Your Organization

[Network Segmentation: Definition, Benefits, and Best Practices]

by Rory at Apr 11, 2024, 03:11 PM

Limited Time Offer

25%

Implementing multi-factor authentication seems like a no-brainer. It's a standard security best practice, and it would add an extra layer of protection for these critical medical devices.

upvoted 0 times

...

Alease

7 months ago

This is a tricky question. We need to consider the unique requirements of IoMT devices and balance security with accessibility for patients.

upvoted 0 times

...