The DoseWise Portal is used in the U.S., Australia, Japan and Europe to collect and analyze radiation exposure levels from X-rays and medical imaging equipment. It mistakenly shipped with errors, including hard-coded credentials for a database holding patient data and unencrypted storage of other credentials. The vulnerabilities can be exploited remotely, according to an advisory issued by ISC-CERT. The healthcare industry has been seen as vulnerable due to wide variations in information security practices and long refresh cycles for medical-related hardware.”]
Source: https://www.cuinfosecurity.com/philips-to-fix-vulnerabilities-in-web-based-health-app-a-10206