Afternoon all,
In the past few weeks, 3 NHS Trusts plus at least 1 major private provider have experienced attacks on their clinical systems infrastructure. The method and details of these attacks may or may not be made public by the departments/providers concerned over time, however one specific attack vector needs considering by PACS Managers:
Santisation of DICOM header fields in imported images
In at least one of the recent exploits which affected a UK Radiology department, a string of code was placed in the Patient Name DICOM tag on one image in a large set of imported images. When imported by the PACS team, the code in the DICOM tag was not sanitised by the PACS and the code executed. This code used the privileged account access of the PACS Manager logged in to deploy its payload.
As this is a fairly simple weakness now in the public domain, I would strongly recommend PACS Managers ask their PACS vendors to provide their DICOM header Content Security Policy and confirm explicitly that sanitisation of content in the DICOM headers is performed as part of the PACS import process by the PACS application such that no executable code can be entered into the sites database and run unknowingly by the importer. At the moment, it appears that not all of the major PACS vendors do this. If your vendor replies negatively to enquiries, it may be necessary to add this to a risk register and consider internal mitigation methods such as only importing images from âuntrustedâ sources to a dirty / test or train PACS temporarily. This is crucial as many PACS vendors require anti-virus exceptions to cover the database, DICOM filestores and all related components - usual security measures may not notice the exploit. The Christmas period and holidays coming up present a âperfectâ time for attackers to attempt this, particularly if PACS offices are left with lower staffing.
Radiology has always been a prime target for attackers, but not having basic input sanitisation on DICOM headers during imports (and so blindly trusting the originator) feels potentially like an open goal now that miscreants are aware.
Al.