Much like the industrial control systems industry, medical devices tend to run legacy operating systems and are rarely updated in a timely fashion. It's not uncommon to see critical care devices running Windows XP or Windows Server 2003, which have not been supported with security updates by Microsoft for years. With the explosion of automation and expanded network access to devices, medical systems have followed suit, providing attackers an enticing vector for exploitation of often trivial vulnerabilities. Trellix Advanced Threat Research analyzes this industry, including medical devices, protocols and architectures to increase visibility and awareness of security issues and facilitate the closure of critical flaws.