Certified Ethical Hacker (CEH v12) — Question 139

You are a cybersecurity consultant for a healthcare organization that utilizes Internet of Medical Things (IoMT) devices, such as connected insulin pumps and heart rate monitors, to provide improved patientcare. Recently, the organization has been targeted by ransomware attacks. While the IT infrastructure was unaffected due to robust security measures, they are worried that the IoMT devices could be potential entry points for future attacks. What would be your main recommendation to protect these devices from such threats?

Answer options

• A. Disable all wireless connectivity on IoMT devices.
• B. Regularly change the IP addresses of all IoMT devices.
• C. Use network segmentation to isolate IoMT devices from the main network.
• D. Implement multi-factor authentication for all IoMT devices.

Correct answer: C

Explanation

The correct answer is C because network segmentation effectively isolates IoMT devices from the main network, reducing the risk of attacks spreading to critical systems. Disabling wireless connectivity (A) may hinder functionality, while frequently changing IP addresses (B) does not directly address security vulnerabilities. Implementing multi-factor authentication (D) is beneficial, but without segmentation, IoMT devices still remain exposed to potential threats.