Product Specific Security Information - PrintNightmare

Teams at Beckman Coulter are aggressively evaluating the risk of the PrintNightmare vulnerability on our products. Where appropriate, teams are validating the installation of the Microsoft security patch and developing specific customer instructions for those systems.

Please see information pertaining to specific products below. This page will be updated as additional information becomes available.

Product Line Model Names Recommendations and Comments
Immunoassay Systems Access 2, UniCel DxI 600, UniCel DxI 800

Beckman Coulter instruments are often configured to operate within a private network. Beckman Coulter recommends contacting your hospital IT department to understand the risk of your system to this type of attack.  If the instrument is connected to an open network environment, Beckman Coulter recommends isolating the system from this type of network.  You may continue to use serial connections for LIS communication and print using only locally attached printers.

Once Beckman Coulter has determined the patch is safe to use on these products, we will update this space with instructions on how to apply the patch or applicable mitigations.  
Chemistry Systems AU Models (DxC700AU, AU480, AU680, AU5800)

Beckman Coulter instruments are often configured to operate within a private network. Beckman Coulter recommends contacting your hospital IT department to understand the risk of your system to this type of attack.  If the instrument is connected to an opennetwork environment, Beckman Coulter recommends isolating the system from this type ofnetwork.  You may continue to use serial connections for LIS communication and print using only locally attached printers.

Once Beckman Coulter has determined the patch is safe to use on these products, we will update this space with instructions on how to apply the patch or applicable mitigations
UniCel DxC 600, UniCel DxC 800 These systems do not use a Windows operating system. The vulnerability and Microsoft patch are not applicable.
Blood Bank PK7400

Beckman Coulter instruments are often configured to operate within a private network. Beckman Coulter recommends contacting your hospital IT department to understand the risk of your system to this type of attack.  If the instrument is connected to an opennetwork environment, Beckman Coulter recommends isolating the system from this type ofnetwork.  You may continue to use serial connections for LIS communication and print using only locally attached printers.

Once Beckman Coulter has determined the patch is safe to use on these products, we will update this space with instructions on how to apply the patch or applicable mitigations.  
 PK7300 This system is configured to operate within a private network. You may continue to use serial connections for LIS communication (RS232C).

Information Systems DxONE Command Central For installations on REMISOL ADVANCE systems, please refer to the REMISOL ADVANCE instructions.

For installations on other  systems within customer lab environments, patch according to the patching policy in place at the customer lab..
PROService, RAP Box These systems do not use a Windows operating system. The vulnerability and Microsoft patch are not applicable.
DxONE Inventory Manager These systems do not use a Windows operating system. The vulnerability and Microsoft patch are not applicable.
REMISOL ADVANCE

Please go to https://www.beckmancoulter.com/wsrportal/page/softwareDownloadSearch for patches and instructions.  If you are using Windows 7 or Windows Server 2008, please call hotline support for instructions.

DxONE Insights These systems do not use a Windows operating system. The vulnerability and Microsoft patch are not applicable.
DxONE Workflow Manager These systems do not use a Windows operating system. The vulnerability and Microsoft patch are not applicable.
Hematology DxH 500/520/560 These systems do not use a Windows operating system. The vulnerability and Microsoft patch are not applicable..
DxH 600, 800, SMS Follow the below steps to download and install the PrintNightmare patch: 
Important: Have a clean USB/Thumb drive with minimum memory of 4gb
1. Use your desktop/laptop (not from DxH Instrument) to visit the below Beckman RSU portal.
            a. https://www.beckmancoulter.com/wsrportal/page/softwareDownloadSearch
                        Note: This step should not be executed from DxH Instrument. 
2. Provide below details in the "Search By Product" section:
            a. Market Segment: Diagnostics
            b. Product Line: Hematology 
            c. Product Series: Unicel DxH
            d. Product: Select the product for which you want the PrintNightmare patch to be applied
            e. Software Name: DxH PrintNightmare Patch Update.
            f. Language: English
3. Click on Search.
4. Under “Software Download Search Results” Click on “DxH_PrintNightmare_Patch_Update” 
5. Click on "Download" buttons to download the “DxH_PrintNightmare_Patch_Update.zip" file and "Install_Instruction_Document_C85197AA.pdf" file.
6. A zip file with the filename “DxH_PrintNightmare_Patch_Update.zip” and Install instruction document with file name "C85197AA.pdf" will be downloaded to your desktop/laptop.
7. Extract/Unzip the contents of the "DxH_PrintNightmare_Patch_Update.zip" file to your USB/Thumb drive.
8. Follow the install instruction document “Install_Instruction_Document_C85197AA.pdf”  to install the PrintNightmare patch in the DxH Instrument.
 DxH 900, 690T, SMS II
HmX, HmX AL These systems do not use a Windows operating system. The vulnerability and Microsoft patch are not applicable.
LH 500

Beckman Coulter instruments are often configured to operate within a private network. Beckman Coulter recommends contacting your hospital IT department to understand the risk of your system to this type of attack.  If the instrument is connected to an opennetwork environment, Beckman Coulter recommends isolating the system from this type ofnetwork.  You may continue to use serial connections for LIS communication and print using only locally attached printers.

LH750, LH780, LH785, LH Slidemaker, LH Slidestrainer

Beckman Coulter instruments are often configured to operate within a private network. Beckman Coulter recommends contacting your hospital IT department to understand the risk of your system to this type of attack.  If the instrument is connected to an opennetwork environment, Beckman Coulter recommends isolating the system from this type ofnetwork.  You may continue to use serial connections for LIS communication and print using only locally attached printers.

Ac•T Family These systems do not use a Windows operating system. The vulnerability and Microsoft patch are not applicable.
Ac•T 5diff

Beckman Coulter instruments are often configured to operate within a private network. Beckman Coulter recommends contacting your hospital IT department to understand the risk of your system to this type of attack.  If the instrument is connected to an opennetwork environment, Beckman Coulter recommends isolating the system from this type ofnetwork.  You may continue to use serial connections for LIS communication and print using only locally attached printers.

Urinalysis iRICELL, iQ Workcell, iChemVELOCITY, iQ200

For Windows XP and Windows 7 systems Beckman Coulter is evaluating the available patch and/or the mitigations for the PrintNightmare vulnerability. We are scheduled to make this available by the end of October 2021.

For Windows 10 systems the available patch and/or mitigations for the PrintNightmare vulnerability are scheduled to be available by the end of September 2021.

Beckman Coulter recommends continuing to isolate your product from the network until then. 

Lab Automation

Power Express

Prior to patch availability, Beckman Coulter recommends that you protect your Power Express system by taking the actions recommended by Microsoft.  Please follow the link below to access instructions.

Customer Installation Instructions

Once Beckman Coulter has determined the patch is safe to use on these products, we will update this space with instructions on how to apply the patch or applicable mitigations.

AutoMate 1200, 1250, 2500, 2550 Customer Installation Instructions
Power Processor, Power Link

Prior to patch availability, Beckman Coulter recommends that you protect your Power Express system by taking the actions recommended by Microsoft.  Please follow the link below to access instructions.

Customer Installation Instructions

Once Beckman Coulter has determined the patch is safe to use on these products, we will update this space with instructions on how to apply the patch or applicable mitigations.

DxA 5000 Please contact your local service representative for additional information.
Ipaw, ISB (Intelligent Sample Banking), Sorting Drive Customer Installation Instructions
Microbiology LabPro Computers Provided by Beckman Coulter

For Windows 10 PC’s apply latest Beckman Coulter approved patch for Windows 10: Follow the link below to the Software Downloads page and search on the Diagnostics market segment and the Microbiology product line. 

Future patches for Microbiology products will be released for any new PrintNightmare CVEs after such a patch is made available by Microsoft and validated by Beckman Coulter.

https://www.beckmancoulter.com/wsrportal/page/softwareDownloadSearch

For networked Windows 7 PC’s Beckman Coulter's recommendation is to upgrade to Windows 10 and apply patch. Contact local Customer Technical Support for instructions.

Prior to patch or upgrade of vulnerable networked LabPro PCs, the recommended mitigation is to isolate such PCs to a private network which is connected to no other networks or the internet.

Although Microsoft has documented workarounds for each PrintNightmare CVE via its searchable vulnerability database (https://msrc.microsoft.com/update-guide/vulnerability), following these workarounds is not recommended due to impact to LabPro print operation. Use of such workarounds is not currently supported for LabPro.

MicroScan autoSCAN-4
DxM MicroScan WalkAway 40 SI
DxM MicroScan WalkAway 96 SI
DxM MicroScan WalkAway 40 plus
DxM MicroScan WalkAway 96 plus
These systems do not use a Windows operating system. The vulnerability and Microsoft patch are not applicable..
Nephelometry IMMAGE 800 This system does not use a Windows operating system. The vulnerability and Microsoft patch are not applicable.