Microsoft Operating System Security Update Recommendation for Varian Standalone Software

This recommendation applies to the following Varian Medical Systems’ products running on Microsoft operating systems: ARIA® oncology information system (including Radiation Oncology, Medical Oncology and Practice Management), ARIA Radiation Therapy Management, ARIA Connect, ARIA IEM, AURA, Eclipse™ treatment planning system (including the subcomponent Framework Agent Servers), InSightive™ analytics, and Velocity™ software. This recommendation does NOT apply to Varian control software for its treatment delivery systems including the TrueBeam® system and Clinac® linear accelerator.

This recommendation is NOT for general Microsoft Service Pack updates. It is ONLY for Microsoft Operating System Security Updates.

Customers are responsible for the security and protection of their networks including maintaining current virus protection, robust firewalls, Microsoft Security Updates and a robust backup strategy. If customers have defects in their network security, it is possible for their Varian products to become infected with viruses.

Prior to releasing a Security Update, Microsoft conducts a validation of the update. Varian recommends that customers apply Microsoft Security Updates as they become available from Microsoft in accordance with their information technology policies. Notify the Varian Helpdesk or Customer Support immediately should you experience difficulties with Varian software after installation of a Security Update.

Applying Microsoft OS Security Updates will not void any of the applicable Varian product warranties or software service agreements in effect at the time of installation of the OS Security Update.

The information contained in this online recommendation represents the current view of Varian Medical Systems as of the date it is posted and the policy is subject to change without notice. Because we must respond to changing market conditions and are constantly evaluating how to better work with our customers and partners, the recommendations should not be interpreted as legally binding commitments, but rather as a flexible document subject to change. Similarly, we cannot guarantee that any information that is provided will be error-free or kept up to date after it is posted.

View Related Guidance for our Treatment Delivery Systems

Please refer to section “Securing Varian Products from Ransomware” in the Varian Cybersecurity Administration Reference Guide P1055890 (EN), P1055892 (FR), P1055891 (DE), P1055897 (JA), P1055896 (PT-BR), P1055900 (RU), or P1055894 (ES) on MyVarian.

This online recommendation is for informational purposes only. VARIAN MAKES NO WARRANTIES, EXPRESS, IMPLIED, OR STATUTORY, BY POSTING THE RECOMMENDATIONS OR ABOUT THE INFORMATION PROVIDED.