Are you a healthcare professional and do you wish to enter the site?
Your IT department is undoubtedly focused on securing servers, networks, and cloud environments. But are they overlooking a critical entry point into your ecosystem—your X-ray modality? As a connected device, your modality can serve as a gateway to your data. For this reason, it is essential to evaluate its compliance with good practices for cybersecurity.
Below are four important questions to ask your equipment supplier about the strength of their security protocols on your imaging modality.
1. Reduce security risks during manufacturing
Cybersecurity should begin before you even take delivery of your X-ray system. At Agfa Radiology, we remove all non-essential programs and utilities from workstation operating systems before delivery. This process, known as hardening,includes securing default settings and configuring the system to lock entry points in your modality. (1)
Why does this matter? Every software component on your workstation increases the potential for exposure to cyber threats. To minimize security risks, Agfa follows the Defense Information Systems Agency’s (DISA) Security Technical Implementation Guidelines (STIGs) which identify and address weaknesses of Windows-based systems. STIGS identifies the weaknesses in the Microsoft Windows operating system, and we eliminate as many of them as possible before delivering your MUSICA workstation to your facility.
Here are just a few examples of the hardening measures we take:
The result is a hardened DR workstation with a significantly reduced attack surface—delivered with enhanced security from day one, and continuously protected during the lifetime of your equipment in each MUSICA® workstation software update.
2. Secure access of your clinical team to your X-ray modality
Usernames and passwords remain the most common way that radiologic technologists and other staff access your X-ray systems. Unfortunately, many passwords are weak, reused, or easily guessed. A 2025 Cybernews study (2) analyzing more than 19 billion newly exposed passwords found that simple patterns like 123456 still dominate, and that 94% of passwords are reused or duplicated. Additionally, a Sophos study in 2024(3) concluded that compromised credentials were the root cause of 34% of ransomware attacks in healthcare.
A more secure and efficient alternative is to leverage Imprivata secure access management—software that is likely already deployed across your facility. In fact, 80% of hospitals in the US use Imprivata as their Single Sign On solution.
Agfa Radiology Solutions supports the Imprivata™ OneSign® agent that allows modality access only for authorized users. Additionally, it allows them to log in via their personal RFID badges that they already carry. Leveraging their hospital-issued badges eliminates the cybersecurity holes created by poor password management. In fact, Imprivata was named 2026 Best in KLAS for Access Management.(4) RFID login not only strengthens security but also streamlines workflow by allowing users to quickly access the modality with only a badge tap.
Not sure whether your facility uses it? Ask your IT department, or check for the Imprivata logo on your workstation.
3. Require stringent security protocols from your service provider
Another gateway to your network that requires strong security is your maintenance service provider. Your maintenance service provider is an essential part of your operations – delivering software updates and providing rapid intervention when needed – actions necessary to keep your imaging equipment working optimally. Do you know the steps they are taking for strong password management to protect their gateway to your workstations?
Agfa follows a stringent password policy to reduce the risk of compromised administrator credentials. Our maintenance service is delivered via a special account that imposes unique, strong passwords. For maximum security, the passwords to your service accounts can be changed automatically at the frequency requested by each customer. When Agfa’s service team needs to intervene, they come in with a time-limited key, not a master one.
This way, your service provider can have quick access when rapid and timely intervention is needed – whether remotely or onsite – and you can have confidence that your equipment supplier takes cybersecurity as seriously as you do.
4. Keep security tight with timely updates
Once your X-ray system is installed, ongoing software updates are essential to maintain cybersecurity.
To support your IT team, Agfa provides automatic software updates for MUSICA® Workstations through our remote Fast Update SErvice (FUSE)™. FUSE is a lightweight component installed on your workstation that enables automatic delivery of Agfa-validated patches for security updates of a multitude of components including, among others, the database and the operating system. By ensuring that your systems receive timely updates, FUSE™ can play a key role in safeguarding your critical systems and data and reducing the workload on your IT staff.
Additionally, when procuring a medical-device like an x-ray equipment that may stay operational more than 10 years, a crucial element to pay attention to the ability to offer long-term stability and security of the Operating System (OS). While classical Windows enterprise licenses will last only for 3 years, the IoT Enterprise LTSC license offers up to 10 years of support, and the latter is what is included with all the Agfa Radiology solutions.
Last but not least, besides the security updates themselves, using effective systems for information security management is important, that’s why the ISO 27001 certification is a fundamental selection criteria for medical device suppliers.
If you want to know more about the additional security measures included in Agfa’s MUSICA® workstations, ask your sales representative for our Advanced Data Protection datasheet.
Need more information? Contact your local sales representative here.
1 https://ubuntu.com/blog/what-is-system-hardening-definition-and-best-practices
2 https://cybernews.com/security/password-leak-study-unveils-2025-trends-reused-and-lazy/
3 https://assets.sophos.com/X24WTUEQ/at/cq9bfnh5g9kpw874qqg5th/sophos-state-of-ransomware-in-healthcare-2025.pdf
4 https://www.imprivata.com/company/press/imprivata-enterprise-access-management-wins-2026-best-klas-award-access-management