What question did this study set out to answer?

The aim is to address cybersecurity threats in connected medical devices and their impact on patient safety within the NHS.

March 13, 2026Open Access

Cybersecurity in connected medical devices: a policy agenda for the NHS

Key Points

The aim is to address cybersecurity threats in connected medical devices and their impact on patient safety within the NHS.
Examines current vulnerabilities in connected medical devices
Analyzes the role of the MHRA in enforcing cybersecurity policies
Proposes a unified socio-technical framework for security
Highlights the need for cybersecurity to be recognized as a clinical safety issue
Suggests implementing security-by-design in device manufacturing
Calls for continuous vigilance post-market to ensure safety

Abstract

Connected Medical Devices (CMD) are redefining care within the NHS but exposing it to bi-directional cyber-physical threats that traverse physical, network and cloud layers. These vulnerabilities blur the boundary between technology and patient safety. This Comment argues that the MHRA should elevate cybersecurity to a clinical-safety mandate, enforcing a unified socio-technical framework with security-by-design, cross-layer risk assessment and continuous post-market vigilance.

Bookmark

View Full Paper

Cite This Study

Toparti et al. (Tue,) studied this question.

synapsesocial.com/papers/69b3ac4d02a1e69014ccde6a https://doi.org/https://doi.org/10.1038/s41746-026-02534-4

Bookmark

View Full Paper