Sitting Ducks: The State of Medical Device Cybersecurity

Join the Aspen Policy Academy mailing list to learn more about us and our fellows (you’ll receive one email a week).

{"action":"swipe","clientId":"ac5a79b3-027f-4735-ad6e-8ed9a01adc94","controls":["submits"],"property":"newsletter","recipients":"","receipts":"","rules":[],"subject":""}

{"type":"email","format":[{"label":"month"},{"label":"day"},{"label":"year"},{"label":"hour"},{"label":"minute"}],"filetypes":[],"options":[],"title":"Email Address","description":" ","placeholder":"","helper":false,"abilities":["required"],"beacons":[],"preset":"","identifier":"email_address","evaluate":[],"minimum":0,"maximum":200,"expression":"^[a-zA-Z0-9.]{2,}@[a-zA-Z0-9]{3,}\\.[A-Za-z]{2,}$","count":1}

Email Address

{"type":"input","format":[{"label":"month"},{"label":"day"},{"label":"year"},{"label":"hour"},{"label":"minute"}],"filetypes":[],"options":[],"title":"First Name","description":" ","placeholder":"","helper":false,"abilities":["required"],"beacons":[],"preset":"","identifier":"first_name","evaluate":[],"minimum":0,"maximum":200,"expression":"(.|\\n){1,}?","count":1}

First Name

{"type":"input","format":[{"label":"month"},{"label":"day"},{"label":"year"},{"label":"hour"},{"label":"minute"}],"filetypes":[],"options":[],"title":"Last Name","description":" ","placeholder":"","helper":false,"abilities":[],"beacons":[],"preset":"","identifier":"last_name","evaluate":[],"minimum":0,"maximum":200,"expression":"(.|\\n){1,}?","count":1}

Last Name

{"type":"check","format":[{"label":"month"},{"label":"day"},{"label":"year"},{"label":"hour"},{"label":"minute"}],"filetypes":[],"options":[{"label":"I want to learn how to change policy"},{"label":"I am a journalist"}],"title":"Focus","description":"Description of field","placeholder":"","helper":false,"abilities":["multiple"],"beacons":[],"preset":[],"identifier":129339558,"evaluate":[],"minimum":0,"maximum":200,"expression":"(.|\\n){1,}?","count":1}

Focus

Description of field

{"type":"check","format":[{"label":"month"},{"label":"day"},{"label":"year"},{"label":"hour"},{"label":"minute"}],"filetypes":[],"options":[{"label":"Washington DC area"},{"label":"New York City area"},{"label":"San Francisco Bay area"},{"label":"Los Angeles area"},{"label":"I'm in another location"}],"title":"Select your location","description":"Description of field","placeholder":"","helper":false,"abilities":[],"beacons":[],"preset":[],"identifier":441799501,"evaluate":[],"minimum":0,"maximum":200,"expression":"(.|\\n){1,}?","count":1}

Select your location

Description of field

By submitting this form, I agree that the Aspen Institute can collect, process, and retain limited personal information for administrative purposes; and that the Institute can share this limited personal information with its trusted service providers for program administration purposes. I consent to receiving email communications from the Aspen Policy Academy. I understand I can withdraw my consent at any time by contacting DataPrivacyLegal@aspeninstitute.org.

I agree to the Aspen Institute’s Terms of Use Agreement and acknowledge that I have read and understand the Aspen Institute Privacy Policy which provides additional information about how the Institute processes personal information, as well as rights I may have regarding the personal information the Institute maintains about me.

Thank you for signing up! Keep an eye on your inbox for our next weekly newsletter!

{"abilities":[],"action":"stack","className":"","columns":3,"controls":[],"exclude":[],"include":[{"custom.menu":"header-menu"}],"maximum":6,"property":"header","orders":["date","title","menu_order","post_type","post__in"]}

{"abilities":[],"action":"stack","className":"","columns":3,"controls":[],"exclude":[],"include":[{"custom.menu":"header-menu"}],"maximum":6,"property":"mobile","orders":["date","title","menu_order","post_type","post__in"]}

Sitting Ducks: The State of Medical Device Cybersecurity

Article Published November 28, 2025

This article originally appeared in MedTech Strategist on November 28, 2025.

By Colin Miller

The human body’s built-in security, the immune system, can recognize threats, send alerts in the form of symptoms, and neutralize foreign agents like viruses and bacteria. The security of the electronic devices used in the course of healthcare should be expected to have a similar level of robustness, yet regulatory requirements in that area are murky at best. To get a handle on an increasingly digital, and thus increasingly vulnerable, healthcare industry, Daniel Bardenstein, co-founder and CEO of Manifest, has proposed that the FDA obligate medical device manufacturers (MDMs) to adhere to certain baseline standards, from password complexity and minimized exposure to software updates and validation.

Read the Full Article

{"abilities":[],"action":"swipe","className":"wide","columns":3,"controls":["arrows"],"exclude":[{"starter.postid":"28209"},{"default.postid":"26818"}],"filters":[],"include":[{"starter.termid":"120"},{"starter.termid":"231"}],"maximum":6,"meta":[],"property":"box","searching":"","sorts":[{"ordering.label":"date","evaluation.label":"\u2193","display":"Most Recent","label":"date \u2193 Most Recent"}],"sorting":[{"ordering.label":"date","evaluation.label":"\u2193","display":"Most Recent","label":"date \u2193 Most Recent"}],"orders":["date","title","menu_order","post_type","post__in","relevance"],"filtering":"","refiner":false,"total":58}

Aspen Policy Academy

Sitting Ducks: The State of Medical Device Cybersecurity

Browse Related Articles

Outcome-Based Contracting Reorients Government IT Acquisition Around Public Value and Mission Results

You Do Not Have to Be a Politician to Shape Policy. Mai Sistla Is Proving It.

The #1 AI Governance Mistake Schools Are Making