Shyam Sundar Ramaswami & Rakesh Mahanthi


Talk Title :

Honey, I Just Put The Hospital On A Ventilator! - DICOM And Its Pitfalls


Abstract :

Digital Imaging and Communications in Medicine ( DICOM ) is a file format used widely across the healthcare industry. These files serve the purpose of carrying the patient metadata and scans together in a single file. Since sensitive Personally Identifiable Information ( PII ) and Personal Health Information ( PHI ) are carried together in these files, securing them is very crucial.

Unfortunately, the DICOM files became powerful attack vectors due to a vulnerability resulting from their structure. We also found that such malicious DICOMs are evading the corporate antivirus. In this research, we propose an entropy-based DICOM detection technique that helps in detecting such malicious DICOMs and alerting the SOC teams. We have also built the under the amour utility that runs in Linux and Windows systems to detect the presence of such malicious DICOM. We will show how we attacked systems that are running DICOM and also show the innovations and solutions we have built to stop such DICOM attacks in Linux and Windows.

Bio :

Shyam Sundar Ramaswami is a Sr. Staff Cyber Security Architect with GE Health Care India and is part of the cyber lab team. Shyam is a two-time TEDx speaker, Co-author of the book "It's your Digital Life" (Taylor and Francis Publicaiton/C&C), and has presented his original research work in several conferences like Blackhat, Qubit, Nullcon (AMMO), Hackfest, DeepSec, several international cyber security conferences and IEEE forums across the globe. Shyam is also a teacher of cyber security and has taught "Advanced attack and defenses" class for Stanford university's cyber security program powered by Great lakes India and also "Threat hunting" for MBA students in SCIT Pune. Shyam has a masters in digital forensics and is currently pursuing in Ph.D. too.

Want to connect?

Rakesh Mahanthi is a Software Engineer with GE Health Care India and is part of the Cybersecurity lab. Rakesh pursued his bachelor's in Computer Science and Engineering from the National Institute of Technology, Trichy. He is an eLearnSecurity certified Junior Penetration Tester ( eJPT ). Rakesh is a cyber security enthusiast who is driven by pure passion and works on unique research areas when it comes to the health care industry and cyber attacks on the same.

Want to connect?