During a hospital security assessment you find dozens of network-connected infusion pumps running outdated firmware that cannot be upgraded for several months. To reduce the risk of the pumps being conscripted into an Internet-wide botnet similar to Mirai, which immediate countermeasure will be most effective while allowing the pumps to keep serving patients?
Disable the pumps' local web management interface while leaving network settings unchanged
Place the pumps in a dedicated VLAN and restrict their outbound traffic to only necessary internal hosts through the firewall
Enable detailed Telnet service logging on the pumps to identify credential-stuffing attempts
Install commercial antivirus software directly on each infusion pump's firmware
Mirai compromises IoT devices through default credentials and then requires the infected host to reach public command-and-control (C2) servers and scan external IP ranges. Moving the pumps to an isolated VLAN and enforcing outbound firewall rules limits their communication to only the hospital's internal medication server, preventing unsolicited Internet access and blocking both C2 traffic and scanning activity. Logging Telnet alone does not stop compromise, deploying traditional antivirus is generally impossible on embedded firmware, and disabling the local web UI would not hinder Mirai's Telnet-based propagation.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
ELI5: What is a VLAN?
Open an interactive chat with Bash
How does Mirai infect IoT devices?
Open an interactive chat with Bash
What is command-and-control (C2) traffic?
Open an interactive chat with Bash
Certified Ethical Hacker (CEH)
Mobile Platform, IoT, and OT Hacking
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99
$19.99/mo
Billed monthly, Cancel any time.
3 Month Pass
$44.99
$14.99/mo
One time purchase of $44.99, Does not auto-renew.
MOST POPULAR
Annual Pass
$119.99
$9.99/mo
One time purchase of $119.99, Does not auto-renew.
BEST DEAL
Lifetime Pass
$189.99
One time purchase, Good for life.
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .