
By Sundar Balasubramanian
In modern healthcare, the adoption of Internet of Medical Things (IoMT) devices has transformed patient care. However, this innovation also brings critical cyber security challenges that must be addressed. An example of such a threat has been highlighted by the US Cybersecurity and Infrastructure Security Agency (CISA), which warns that Contec CMS8000 devices, widely used for patient monitoring, contain a backdoor that sends patient data to a remote IP address and could download and execute files on the device.
India, in particular, has become a prime target, experiencing an average of 3,284 attacks per week, nearly double the global average (1,843) according to Check Point’s Threat Intelligence Report. In fact, the Indian healthcare sector was the most impacted by cyberattacks, with 8,614 weekly attacks per organization. This alarming trend highlights the increased attack surface due to the rapid adoption of technologies such as electronic health records (EHRs), telemedicine, and Internet of Things (IoT) devices.
A stark example is the ransomware attack on Delhi AIIMS in November 2022, which disrupted operations and exposed critical vulnerabilities in the sector. More recently, in October 2024, Star Health Insurance, one of India’s leading health insurers, suffered a major data breach, potentially compromising the personal information of 31 million customers. Reports indicate the stolen data has been listed for sale online, underscoring the urgent need for stronger cybersecurity in healthcare.
Technical details aside, human safety is always paramount. Addressing this type of vulnerability ensures that clinicians make care decisions on accurate data, thereby ensuring patients get proper care. As noted by CISA, “…a malfunctioning monitor could lead to improper responses to vital signs displayed by the device”.
This article explores how Check Point’s IoT Protect solution can help hospitals defend against such threats, leveraging insights from the 2025 Check Point State of Cyber Security Report and addressing the broader issue of IoMT security.
The Threat: Contec CMS8000 Backdoor
The Contec CMS8000 patient monitoring devices have been found to include a backdoor that poses severe risks to patient data security and device integrity. This backdoor allows unauthorized access to patient data, sending it to a remote IP address, and enables the download and execution of files on the device. Such vulnerabilities can lead to data breaches, unauthorized data manipulation, and potential disruptions in patient care.
How Check Point IoT Protect Can Help
Check Point’s IoT Protect solution offers a comprehensive approach to securing IoT devices within healthcare environments. Here’s how it can specifically address the threat posed by the Contec CMS8000 backdoor:
Healthcare Threat Landscape: Insights from the 2025 Check Point State of Cyber Security Report
The 2025 Check Point State of Cyber Security Report highlights the increasing cyber threats faced by the healthcare sector. In 2024, healthcare became the second most targeted industry, with a 47% increase in attacks year-over-year. The report underscores the need for robust cyber security measures to protect sensitive patient data and ensure the integrity of medical devices.
Key findings from the report include:
The Broader Issue of IoMT Security
The Internet of Medical Things (IoMT) encompasses a wide range of connected medical devices that improve patient care but also introduce significant cybersecurity challenges. As highlighted in the Check Point blog, IoMT devices often lack built-in security features, making them vulnerable to cyber attacks. Ensuring the security of these devices is critical, as breaches can lead to data theft, compromised patient safety, and operational disruptions.
To address these challenges, healthcare organizations must adopt a multi-layered security approach that includes:
Conclusion
The integration of IoMT devices in healthcare offers numerous benefits but also introduces significant cyber security risks. The Contec CMS8000 backdoor threat exemplifies the vulnerabilities that can compromise patient data and device integrity. Check Point’s IoT Protect solution provides a robust defense against such threats, ensuring the security and reliability of healthcare IoT devices. By adopting comprehensive cybersecurity measures, healthcare organizations can protect patient data, maintain operational integrity, and deliver safe, high-quality care.

(The author is Sundar Balasubramanian, Managing Director for India and South Asia at Check Point Software Technologies, and the views expressed in this article are his own)
CXOtoday is a premier resource on the world of IT, relevant to key business decision makers. We offer IT perspective & news to the C-suite audience. We also provide business and technology news to those who evaluate, invest, and manage the IT infrastructure of organizations. CXOtoday has a well-networked and strong community that encourages discussions on what’s happening in the world of IT and its impact on businesses.
Copyright © 2023 Trivone. All Rights Reserved.

More Stories
New ITU Report Finds Community Networks Are Key to Reaching the Unconnected
Digital Coercion: How Inaccessible Design Strips Financial Privacy
The Need to Reimagine the WSIS Forum