This is scary no? I guess sandboxing will contain this growing thread. http://blog.trendmicro.com/trendlab...izations-most-affected-by-stegoloader-trojan/
The chief problem in healthcare is that PACS systems are inherently insecure. The terminals used to add images to these systems often lack any form of security controls at the behest of the PACS vendor and often are forced to use outdated Java and ActiveX components instead of the latest, patched versions. Combine this with the fact that many of these terminals still use Windows XP and are not even updated past the initial installation (again due to vendor requirements) and you have a recipe for a critical system in many healthcare ecosystems becoming an unwitting host for malicious threat vectors.
