Skip to main content
blackhat.ie
All Sectors

Pharma & MedTech

ireland

Pharmaceutical, medical devices, clinical trials

NIS2 Essential Entity

Compliance tags are AI-generated and should not be cited as regulatory evidence without independent review.

Total (30d)

7

Critical

1

High

2

Medium

4

7 threats in last 30 days( 78% vs prior period)
Top ATT&CK Techniques
T1190Exploit Public-Facing Application26x

Deploy WAF rules, patch public-facing apps within 48h of CVE disclosure, segment DMZ from internal networks, and run authenticated vulnerability scans weekly.

T1059Command and Scripting Interpreter3x

Disable unused scripting interpreters, enforce PowerShell Constrained Language Mode, log all script block execution via ScriptBlockLogging.

T1486Data Encrypted for Impact2x

Maintain offline/immutable backups tested monthly, enable ASR rules against ransomware, and deploy behavioural detection for mass file encryption patterns.

T1204User Execution1x

Block execution of downloaded files via Mark-of-the-Web + SmartScreen, train users on social engineering, and sandbox browser downloads.

T1566Phishing1x

Enforce DMARC (p=reject), SPF, and DKIM on all domains; block executable attachments at the mail gateway; conduct quarterly phishing simulations.

T1567Exfiltration Over Web Service1x

Deploy DLP policies on cloud storage uploads, block unauthorised file-sharing services at the proxy, and alert on anomalous outbound data volumes.

T1059.007Command and Scripting Interpreter1x

Disable unused scripting interpreters, enforce PowerShell Constrained Language Mode, log all script block execution via ScriptBlockLogging.

T1078Valid Accounts1x

Enforce MFA on all accounts, implement conditional access policies, audit privileged accounts quarterly, and monitor for impossible-travel logins.

Compliance Exposure
NIS2-Art21-2e(36)NIS2-Art21-2b(4)GDPR-Breach(2)DORA-Art17-23(1)DORA-Art5-16(1)NIS2-Art21-2a(1)
Technologies
SAPVeevaLIMSSCADAGxP

Recent Intelligence

Dräger Zeus Devices Vulnerable

A vulnerability was discovered in Dräger Zeus IE and Zeus RS C500 devices, affecting an unknown function of the USB Interface component, which can result in exposure of resource. Users of these devices should upgrade to a patched version to mitigate the risk. The vulnerability can be exploited through a physical attack on the device. KEY

2/6/2026Medium

OT Security Gap

A significant security gap exists in operational technology (OT) systems, where legacy devices and lack of monitoring hinder AI-driven security strategies. This gap affects various industries, including energy, automotive, and pharmaceuticals. Organizations should prioritize passive network monitoring and address the visibility gap to ensure effective security.

22/5/2026Medium

Vulnerability Exploitation Tops DBIR

According to the 2026 Verizon Data Breach Investigations Report, vulnerability exploitation has become the most common initial access vector, surpassing stolen credentials. This shift affects organizations of all sizes and industries, emphasizing the need for robust vulnerability management. To mitigate this risk, prioritize vulnerability patching and implement a comprehensive security strategy.

20/5/2026High

Pharmacy System API Vulnerability

A vulnerability has been discovered

19/5/2026High

Thermo Fisher Torrent Suite Dx Vulnerability

A critical vulnerability was discovered in Thermo Fisher Scientific Torrent Suite Dx, affecting versions up to 5.14.2, which can lead to improper authorization. Users of this software are advised to take immediate action to update or patch their systems. The vulnerability can be exploited remotely, increasing the risk of unauthorized access.

18/5/2026Critical

Torrent Suite Dx Vulnerability

A privilege escalation vulnerability has been discovered in Thermo Fisher Scientific's Torrent Suite Dx, affecting versions up to 5.14.2. This vulnerability may allow authenticated users with limited access to gain unauthorized administrator-level privileges. Users are advised to review the CVSS details and affected products for further guidance.

18/5/2026Medium

West Pharma Hit by Cyberattack

West Pharmaceutical Services has disclosed a cyberattack resulting in data theft and system encryption. The incident may impact customers and business operations. Users are advised to monitor for suspicious activity and follow updates from the company.

13/5/2026Medium

Untitled Security Alert

A cross-site scripting vulnerability has been discovered in the SourceCodester Pharmacy Sales and Inventory System 1.0, affecting users of the system. The vulnerability can be exploited remotely, and an exploit is available. Users should update their system to prevent potential attacks.

7/5/2026Medium

Medtronic

A vulnerability in Medtronic MyCareLink Patient Monitors allows improper physical access control, potentially affecting patient data. Users of these monitors should upgrade the affected component to mitigate the risk. The vulnerability can be exploited by physical access to the device.

7/5/2026Medium

Medtronic Monitor Vulnerability

A vulnerability in Medtronic

7/5/2026Medium

Pharmacy System SQL Injection

A critical SQL injection vulnerability has been discovered in the SourceCodester Pharmacy Sales and Inventory System 1.0, affecting an unknown part of the file ajax.php. Users of this system are at risk of remote exploitation. Immediate action is recommended to patch or mitigate the vulnerability.

7/5/2026Critical

Pharmacy System SQL Injection

A vulnerability has been discovered in the SourceCodester Pharmacy Sales and Inventory System, allowing for SQL injection attacks. Users of this system are at risk of remote exploitation. To mitigate this threat, users should update

29/4/2026Medium

SQL Injection in Pharmacy System

A vulnerability has been discovered in the SourceCodester Pharmacy Sales and Inventory System, allowing remote SQL injection attacks. Users of this system are advised to take immediate action to

29/4/2026Medium

Pharmacy Sales System XSS

A vulnerability was detected in the SourceCodester Pharmacy Sales and Inventory System, allowing for cross-site scripting attacks. Users of this system are at risk of having their data compromised. To mitigate this risk, users should update their system and implement additional security measures.

29/4/2026Medium

Pharmacy System SQL Injection

A critical vulnerability has been discovered in the SourceCodester Pharmacy Sales and Inventory System 1.0, affecting the delete_supplier function in ajax.php. This vulnerability allows for remote SQL injection attacks, potentially compromising sensitive data. Users are advised to update or patch their systems immediately.

29/4/2026Critical

Pharmacy System SQL Injection

A critical SQL injection vulnerability has been discovered in the SourceCodester Pharmacy Sales and Inventory System 1.0, affecting the save_supplier function in ajax.php. Users of this system are at risk of remote exploitation. Immediate action is recommended to patch

29/4/2026Critical

Pharmacy System XSS Vulnerability

A cross-site scripting (XSS

29/4/2026High

Medtronic Data Breach Confirmed

Medtronic has confirmed an IT breach, with the hacking group ShinyHunters claiming access to millions of records. The breach may affect Medtronic customers and partners. Users are advised to monitor their accounts and watch for suspicious activity.

28/4/2026Medium

Pharmacy System XSS Vulnerability

A cross-site scripting vulnerability was discovered in the SourceCodester Pharmacy Sales and Inventory System, affecting the index.php file. Users of this system are at risk of remote exploitation. To mitigate this vulnerability, users should update their system and

28/4/2026Medium

Pharmacy System XSS Flaw

A vulnerability in the SourceCodester Pharmacy Sales and Inventory System allows for cross-site scripting (XSS) attacks. Users of the system, particularly those with access to the supplier function, are affected. To mitigate the risk, users should avoid executing untrusted input in the

28/4/2026Medium
All SectorsLatest Intelligence