How Secure Are Our Software Systems

optomist1

A Sea of Statistics
Super Moderator
#1
Full disclosure...I have some coding and software QA experience...learning more each day. However below is a quote from (circa 1986?) Magnum PI, episode "Computer Date", for discussion purposes after reading the quote how secure are our software based systems? Certainly they are much more capable, and complex, yet the question remains

..."your entire computer coding system is vulnerable to outside interdiction,...Yes I know but my investigation indicates that it is technically possible for someone to enter their own program into the accounting computer and rip the company off..." Magnum PI CBS
 
Elsmar Forum Sponsor

Marc

Fully vaccinated are you?
Leader
Admin
#2
You haven't kept up with reality. There are many intrusions, even on phones, regularly. Tiny companies and huge corporations.

Yes, it is still true. Even worse these days.
 

yodon

Leader
Super Moderator
#3
As @Marc says, it's true. A number of institutions (including hospitals) have been held hostage by cryptolocker ransomware schemes, many medical devices have been shown to be hackable (which could, for example, turn off a pacemaker or change the delivery by an infusion pump), and on and on. It's far more complex than just putting something in the accounting software to siphon off funds.
 

Ninja

Looking for Reality
Trusted Information Resource
#4
It makes me wonder sometimes how hard to try when major Cybersecurity firms get hacked too.
Makes me wonder if my tiny little self is served best by security through obscurity...
 

Marc

Fully vaccinated are you?
Leader
Admin
#5

Tagin

Trusted Information Resource
#6

optomist1

A Sea of Statistics
Super Moderator
#7
Hi Marc...that breech/hack is in part what precipirated the post, shortly thereafter I watched the above episode...it produced a profound & perverse chuckle of sorts out of a firm and persistent need to be vigilent of all things software...as you well know running the Cove, which is excellent!!
 

Jen Kirley

Quality and Auditing Expert
Leader
Admin
#8
Full disclosure...I have some coding and software QA experience...learning more each day. However below is a quote from (circa 1986?) Magnum PI, episode "Computer Date", for discussion purposes after reading the quote how secure are our software based systems? Certainly they are much more capable, and complex, yet the question remains

..."your entire computer coding system is vulnerable to outside interdiction,...Yes I know but my investigation indicates that it is technically possible for someone to enter their own program into the accounting computer and rip the company off..." Magnum PI CBS
I think just about all software has some kind of vulnerability. Penetration relies on people getting past the "firewall" so they can probe the software an organization operates. People are the weak link which is why so many astute IT organizations have put in place phishing drills, password requirements, and limits to admin controls that can introduce malware into networks. Then there is the risk of relying on someone else's product. On the day upon arriving at work after the SolarWinds debacle, my husband shut down his server running off that service and rebuilt the functions using Linux, which he took an interest in years ago.

All of this is old stuff of course, just made fresh by the most recent slap in the IT face.
 
Thread starter Similar threads Forum Replies Date
C Calibration Laboratory Location - GMP says in a secure bonded area General Measurement Device and Calibration Topics 5
K CE Certification for Secure Computing/Tempest company CE Marking (Conformité Européene) / CB Scheme 3
J Spreadsheet protection? Are they secure? IATF 16949 - Automotive Quality Systems Standard 6
Marc Ford recalling 123,000 vehicles - Straps that secure the fuel tank may break World News 6
S Process Monitoring using SPC software Quality Assurance and Compliance Software Tools and Solutions 1
J Megger MIT520/2 adjustment software? Calibration and Metrology Software and Hardware 0
M Product Acceptance Software (PAS) PROCEDURE (BOEING D6-51991) AS9100, IAQG, NADCAP and Aerospace related Standards and Requirements 3
M 3D Scanner Software validation ISO 13485:2016 - Medical Device Quality Management Systems 7
Y Software to Manage IEC 62304 Traceability Requirement IEC 62304 - Medical Device Software Life Cycle Processes 3
T Software item classification and Detailed Design IEC 62304 - Medical Device Software Life Cycle Processes 4
T Software Unit definition - IEC 62304 - Medical Device Software Life Cycle Processes 3
T Software user interface - definition of hazards ISO 14971 - Medical Device Risk Management 15
T Classification Accessory Software medical device EU Medical Device Regulations 4
G Software Medical Device Classification EU Medical Device Regulations 7
D Software Validation Question ISO 13485:2016 - Medical Device Quality Management Systems 10
C. Tejeda Computer system validation approach for Minitab Statistical software Software Quality Assurance 7
B Can a software that receive data from a MD be classified as Class I?or is not a MD? EU Medical Device Regulations 5
A What JIRA Software workflows you use for your software lifecycle? IEC 62304 - Medical Device Software Life Cycle Processes 4
G Software change management Design and Development of Products and Processes 2
G IATF 7.1.5.2.1 Calibration/verification records :Program/software verification IATF 16949 - Automotive Quality Systems Standard 7
John C. Abnet ...validation of computer software ISO 13485:2016 - Medical Device Quality Management Systems 14
N Free statistical software Reliability Analysis - Predictions, Testing and Standards 7
T ISO quality system software such as MQ1 (which is what we currently use) Document Control Systems, Procedures, Forms and Templates 8
X Looking for 17025 auditor to perform internal audit on IT software testing laboratory ISO 17025 related Discussions 3
B ERP software validation - risk assessment vs validation scope ISO 13485:2016 - Medical Device Quality Management Systems 11
D Guidance for Medical records software/template ISO 13485:2016 - Medical Device Quality Management Systems 1
M MDSW Software importer distributor CE Marking (Conformité Européene) / CB Scheme 2
B Software as a Medical Device - Language Requirements EU Medical Device Regulations 6
B Software as a NON-medical device Medical Information Technology, Medical Software and Health Informatics 23
qualprod 8.3 for software development. ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 1
S Software design document NMPA guidance and consultant China Medical Device Regulations 4
C How to place software version for SaMD product in HIBC secondary data structure (UDI-PI)? Other US Medical Device Regulations 4
L Acquiring software from 3rd party company IEC 62304 - Medical Device Software Life Cycle Processes 8
R Validation of Software used in Verification Testing ISO 13485:2016 - Medical Device Quality Management Systems 2
A FMEA Software IATF 16949 - Automotive Quality Systems Standard 6
A Medical Device Software POC Medical Device and FDA Regulations and Standards News 6
C Discus Software for First Article Inspection Inspection, Prints (Drawings), Testing, Sampling and Related Topics 1
D One Software as Medical Device product or two? EU Medical Device Regulations 4
V Internal Audit Software IATF 16949 - Automotive Quality Systems Standard 5
Watchcat New Draft Guidance on Content of Premarket Submissions for Software Device "Functions" Other US Medical Device Regulations 2
Watchcat Software validation vs design V&V? Other US Medical Device Regulations 27
M Initial Importer/Distributor and Software Validation IEC 62304 - Medical Device Software Life Cycle Processes 1
F Configurator for a power unit - Software or other solution? Manufacturing and Related Processes 0
D Test Management Software Software Quality Assurance 1
E ISO 13485 software validation ISO 13485:2016 - Medical Device Quality Management Systems 7
D Tracking software versions used with instruments ISO 13485:2016 - Medical Device Quality Management Systems 0
dgrainger Informational MHRA's Software and AI as a Medical Device Change Programme UK Medical Device Regulations 0
S Do you follow your QMS for non-device software features? Medical Information Technology, Medical Software and Health Informatics 4
J Can we register non-device clinical decision support software under draft guidance? Other US Medical Device Regulations 5
I Software (SaMD) mobile application verification testing: objective evidence Medical Information Technology, Medical Software and Health Informatics 2

Similar threads

Top Bottom