US CERT: Some end-to-end security products could make healthcare sector vulnerable to man-in-the-middle attacks. The Department of Health and Human Services’ Office for Civil Rights warns about the threat. Man-in the middle attacks occur when a third party intercepts and potentially alters communications between two parties, unbeknownst to the parties. These attacks can be used to inject malicious code, intercept sensitive information such as protected health information, expose sensitive information, and modify trusted information.”]
Source: https://www.cuinfosecurity.com/regulators-warn-man-in-the-middle-attack-risks-a-9813