Explore the state of security in the medical industry through this 46-minute conference talk from CircleCityCon 2017. Delve into critical issues such as HIPAA compliance, health privacy, and infrastructure vulnerabilities. Learn about the challenges faced by healthcare organizations, including outdated equipment, network segmentation problems, and FDA validation concerns. Discover insights on social engineering risks, malpractice concerns, and the potential for opportunistic crimes in medical settings. Examine the role of regulatory bodies like HHS and The Joint Commission, and understand why HIPAA enforcement may be lacking. Gain valuable knowledge about vendor-supplied medical equipment, embedded devices, and the budgetary constraints affecting cybersecurity in healthcare.