|
1 | 1 | { |
2 | 2 | "currentNews": [ |
| 3 | + { |
| 4 | + "id": 423, |
| 5 | + "newsType": "blog", |
| 6 | + "title": "Our CVE Story: Biohacking Village", |
| 7 | + "urlKeywords": "Our CVE Story: Biohacking Village", |
| 8 | + "date": "2024-10-22", |
| 9 | + "author": { |
| 10 | + "name": "Janine (Nina Alli) Medina and Jennifer Agüero", |
| 11 | + "organization": { |
| 12 | + "name": " Biohacking Village", |
| 13 | + "url": "https://www.villageb.io/" |
| 14 | + }, |
| 15 | + "title": "CNA", |
| 16 | + "bio": "Guest authors Janine (Nina Alli) and Jennifer Agüero are both from Biohacking Village. Janine is CEO/Executive Director and Jennifer is a Marketing Communications Specialist. Biohacking Village is a CVE Numbering Authority (CNA) partner under the CISA ICS Root." |
| 17 | + }, |
| 18 | + "description": [ |
| 19 | + { |
| 20 | + "contentnewsType": "paragraph", |
| 21 | + "content": "<i>Guest authors Janine (Nina Alli) and Jennifer Agüero are both from Biohacking Village. Janine is CEO/Executive Director and Jennifer is a Marketing Communications Specialist. Biohacking Village is a CVE Numbering Authority (CNA) partner under the CISA ICS Root.</i>" |
| 22 | + }, |
| 23 | + { |
| 24 | + "contentnewsType": "paragraph", |
| 25 | + "content": "Since our founding in 2014, <a href='/PartnerInformation/ListofPartners/partner/BHV'>Biohacking Village</a> has recognized the critical need to raise awareness about cybersecurity in patient care — long before cybersecurity in healthcare became the priority it is today. Our mission, “Healthier Tech for Healthier People” places cybersecurity at the heart of fostering innovation and ensuring patient safety in healthcare technology. We are driven by two core goals: addressing public interest in healthcare security and ensuring patient safety through proactive action." |
| 26 | + }, |
| 27 | + { |
| 28 | + "contentnewsType": "paragraph", |
| 29 | + "content": "Each year, we organize Biohacking Village events for both domestic and international conferences, and we participate in one of the world’s largest hacker events, <a href='https://www.villageb.io/def-con' target='_blank'>DEF CON</a>. Over time, we’ve built strong relationships with leading medical device manufacturers, inviting them to our <a href='https://www.villageb.io/device-lab' target='_blank'>Device Lab</a>, where they bring products for testing on one of the most perilous networks, by some of the most skilled hackers in the world. We maintain an ethical approach to vulnerability testing and are a trusted partner, focusing on improving security while prioritizing patient protection." |
| 30 | + }, |
| 31 | + { |
| 32 | + "contentnewsType": "paragraph", |
| 33 | + "content": "Before partnering with the <a href='/'>CVE® Program</a> as a <a href='/ProgramOrganization/CNAs'>CVE Numbering Authority (CNA)</a>, responsibility for managing vulnerabilities lay solely with the device manufacturers participating in our Device Lab. While many manufacturers have their own Coordinated Vulnerability Disclosure (CVD) policies, not all do. Additionally, vulnerabilities are sometimes discovered by researchers or security professionals in our <a href='https://www.villageb.io/speaker-lab' target='_blank'>Speaker Lab</a> or <a href='https://www.villageb.io/catalyst-lab' target='_blank'>Catalyst Workshops</a>. In these situations, it’s crucial to have the capability to disclose these findings responsibly. Our ability to assist in responsible disclosure is central to our commitment to public interest and patient safety, ensuring vulnerabilities are addressed efficiently." |
| 34 | + }, |
| 35 | + { |
| 36 | + "contentnewsType": "paragraph", |
| 37 | + "content": "In June 2023, we reached a major milestone by becoming a <a href='/ProgramOrganization/CNAs'>CNA</a>. This designation enables us to proactively identify, assign, and publish <a href='/ResourcesSupport/Glossary?activeTerm=glossaryRecord'>CVE Records</a> for vulnerabilities found in medical devices that are not in another CNA’s scope . By adopting the CVE Program’s processes, we enhanced our ability to manage vulnerabilities swiftly and accurately. Becoming a CNA was a strategic decision that empowers us to contribute more effectively to the global healthcare security landscape." |
| 38 | + }, |
| 39 | + { |
| 40 | + "contentnewsType": "paragraph", |
| 41 | + "content": "The benefits of participating in the CVE Program go beyond our organization. As a CNA, we are better positioned to coordinate vulnerability management efforts with manufacturers, security researchers, and the broader healthcare community. For any organization involved in technology, especially in critical sectors like healthcare, becoming a CNA demonstrates a commitment to cybersecurity and patient safety. It enables companies to take ownership of vulnerabilities, coordinate responses effectively, and ensure risks are mitigated before they escalate into threats." |
| 42 | + }, |
| 43 | + { |
| 44 | + "contentnewsType": "paragraph", |
| 45 | + "content": "At Biohacking Village, our goal is not only to protect patients but also to support medical device manufacturers in continuously improving product security. We believe that collaboration between the public and private sectors, along with clear communication and transparency, is essential for reducing risks and building safer medical technologies. <a href='/PartnerInformation/Partner#HowToBecomeAPartner'>Becoming a CNA</a> reinforces our dedication to fostering a secure, innovative healthcare environment. Our journey with the CVE Program is just the beginning, and we’re excited to be part of this initiative to enhance safety for all." |
| 46 | + } |
| 47 | + ] |
| 48 | + }, |
3 | 49 | { |
4 | 50 | "id": 421, |
5 | 51 | "newsType": "news", |
|
0 commit comments