CP
cyberpings
VulnerabilitiesHIGH

Exposed DICOM Servers Threaten UK Healthcare Security

R7Rapid7 BlogFeb 25, 2026
DICOMUK healthcareRapid7PACScybersecurity
🎯

Basically, hospitals' medical imaging systems are online and could be vulnerable to cyberattacks.

Quick Summary

Over 30 UK healthcare systems are exposing DICOM servers to the internet, risking sensitive patient data. This could lead to unauthorized access and identity theft. Immediate security audits are essential to protect against these vulnerabilities.

What Happened

Imagine walking into a hospital where the doors are locked, but the back windows are wide open. That's the current state of some UK healthcare systems, specifically those using DICOM for medical imaging. Rapid7 Labs recently discovered that over 30 healthcare systems in the UK were responding to DICOM? requests over Port 104?, which is the default for medical imaging traffic. Alarmingly, these systems were accessible from the public internet, raising serious security concerns.

DICOM?, which stands for Digital Imaging and Communications in Medicine, is essential for formatting and transmitting medical images. However, it was designed for use in controlled clinical environments. When exposed to the internet, these systems can be easily discovered by cybercriminals using routine internet scans?. The risk escalates when these systems lack proper security measures, as they can inadvertently reveal sensitive patient information.

Why Should You Care

You might think, "Why does this matter to me?" Well, if you or a loved one ever need medical imaging, your personal health data could be at risk. Exposed DICOM servers can leak patient identifiers and other sensitive information. This is like leaving your house key under the doormat — it makes it easy for anyone to access your private space.

In a world where data breaches are rampant, the implications are serious. If these imaging systems are compromised, it could lead to unauthorized access to your medical records, identity theft, or even manipulation of medical data. Your health information is valuable, and when it’s mishandled, it can have lasting consequences.

What's Being Done

Rapid7 is raising awareness about this issue, but immediate action is required from healthcare providers. Here’s what you can do if you're involved in healthcare IT:

  • Conduct a security audit of your DICOM? systems to ensure they are not exposed to the internet.
  • Implement strong access controls and encryption? to protect sensitive data.
  • Monitor network traffic for any unauthorized access attempts.

Experts are closely watching how healthcare organizations respond to this alarming discovery. The hope is that this will prompt immediate action to secure vulnerable systems and protect patient data from potential breaches.

💡 Tap dotted terms for explanations

🔒 Pro insight: The exposure of DICOM servers highlights a critical gap in healthcare cybersecurity; expect increased scrutiny from regulators and potential compliance ramifications.

Original article from

Rapid7 Blog · Rapid7

Read Full Article

Share

Related Pings

HIGHVulnerabilities

Authentication Bypass Flaw Exposes pac4j-jwt Users

A critical vulnerability in the pac4j-jwt library allows attackers to impersonate users. Developers using this library must update immediately to prevent unauthorized access. Ignoring this could lead to severe security breaches.

Arctic Wolf Blog·Yesterday, 8:34 PM
CRITICALVulnerabilities

Critical Authentication Bypass in pac4j-jwt Library Exposed!

A severe flaw in the pac4j-jwt library allows hackers to bypass authentication. This affects applications relying on the library, risking user data and security. Immediate updates are essential to protect against exploitation.

Arctic Wolf Blog·Yesterday, 7:55 PM
HIGHVulnerabilities

Firefox Faces 22 Vulnerabilities Discovered by Anthropic

Anthropic discovered 22 vulnerabilities in Firefox, with 14 marked high-severity. This puts users at risk of data breaches and unauthorized access. Mozilla is working on patches to fix these issues.

TechCrunch Security·Yesterday, 7:00 PM
CRITICALVulnerabilities

Cisco FMC Faces Maximum-Severity Vulnerabilities: Act Now!

Cisco has identified two critical vulnerabilities in its Secure Firewall Management Center software. Organizations using this software are at risk of unauthorized access and control. Immediate patching is essential to protect sensitive data and maintain security.

Arctic Wolf Blog·Yesterday, 5:58 PM
HIGHVulnerabilities

Firefox Vulnerabilities Exposed by AI in Just Two Weeks

AI has uncovered 22 vulnerabilities in Firefox in just two weeks. This affects anyone using the browser, putting personal data at risk. Mozilla is working on patches to fix these issues, so stay updated!

Cyber Security News·Yesterday, 5:38 PM
HIGHVulnerabilities

Linux Rootkits Evolve with eBPF and io_uring Threats

Linux rootkits are evolving into a serious threat, targeting cloud and IoT systems. This shift puts many users at risk of data breaches and disruptions. Experts are working on detection methods and patches to combat these threats.

Cyber Security News·Yesterday, 5:33 PM