UL LLC, of Northbrook, Ill., has concluded a two-year cooperative research and development agreement (CRADA) with the U.S. Department of Veterans Affairs (VA), a program that verified that the UL 2900 standard provides a more seamless cybersecurity blanket for connected medical devices. UL said this marks is an important step toward the development of cybersecurity tools that ensure that devices can be used without undue risk to patients.

The device industry is quite familiar with whistleblower lawsuits, but Cisco Systems Inc., of San Jose, Calif., was recently forced to pay more than $8 million in connection with a qui tam lawsuit over cybersecurity lapses for video surveillance equipment sold to state and federal government agencies. The case suggests device makers will have to be up to speed on cybersecurity if they wish to avoid suffering a similar fate, particularly given a recent warning the FDA posted regarding a widespread cybersecurity vulnerability.