DOTmed Home MRI Oncology Ultrasound Molecular Imaging X-Ray Cardiology Health IT Business Affairs
News Home Parts & Service Operating Room CT Women's Health Proton Therapy Endoscopy HTMs Pediatrics
Current Location:
> This Story

Log in or Register to rate this News Story
Forward Printable StoryPrint Comment




Cardiology Homepage

The 2019 Heart Rhythm Society scientific sessions: advanced technology in electrophysiology Four key takeaways

New machine learning algorithm could decide who is best for heart failure treatment Could help prevent sudden death from heart failure

Varian acquires CyberHeart, enters cardiac radioablation market Emerging technology could benefit treatment of irregular heartbeats

Philips teams with Medtronic on cryoablation treatment for atrial fibrillation Will form an integrated solution for cryoablation

FDA gives thumbs-up for Biofourmis’ RhythmAnalytics AI Platform Provides automated interpretations of cardiac arrhythmias

Israeli researchers develop first 3D heart from patient's biological materials A first — complete with blood vessels, ventricles and cells

Using comic illustrations to support patient understanding of cardiac catheterization Making patients more satisfied, less anxious and more informed

Medical community finds ways to make TAVR safer for at-risk patients Improving outcomes with special procedures

New ultrasound tech could help detect pediatric congenital heart disease Visualizes structure and blood flow of babies' hearts

Mick Jagger resting after TAVR heart surgery The 75 year old rock star is reportedly recovering from the operation at New York Presbyterian

DHS warns some Medtronic implantable defibrillators vulnerable to hacking

by Thomas Dworetzky , Contributing Reporter
The Department of Homeland Security has issued an alert over hacking vulnerabilities in 16 Medtronic implantable defibrillator models – a total of as many as 750,000 heart devices.

“The vulnerabilities apply to the proprietary Medtronic Conexus radio frequency wireless telemetry protocol, associated with some Medtronic ICDs (implantable cardioverter defibrillators) and CRT-Ds (cardiac resynchronization therapy defibrillators),” Medtronic said in its own alert about the issue.

Story Continues Below Advertisement

Servicing GE Nuclear Medicine equipment with OEM trained engineers

We offer full service contracts, PM contracts, rapid response, time and material,camera relocation. Nuclear medicine equipment service provider since 1975. Click or call now for more information 800 96 NUMED

According to DHS, the exploit could let an attacker “interfere with, generate, modify, or intercept the radio frequency (RF) communication of the Medtronic proprietary Conexus telemetry system, potentially impacting product functionality and/or allowing access to transmitted sensitive data.”

To hack the devices, a fairly low level of expertise is needed, just an “RF device capable of transmitting or receiving Conexus telemetry communication, such as a monitor, programmer, or software-defined radio (SDR), and short-range access to the devices when RF is active.”

Once the devices are exploited a hacker can read or write any location in their memory.

A second vulnerability, of less potential damage, would let a hacker read information stored in the device, such as a patient’s name and health data.

“To date, no cyberattack, privacy breach, or patient harm has been observed or associated with these vulnerabilities.

Conexus telemetry is not used in Medtronic pacemakers (including those with Bluetooth wireless functionality),” noted the company, adding that, “CareLink Express monitors and the CareLink Encore programmers (Model 29901) used by some hospitals and clinics do not use Conexus telemetry.”

At present, the company recommended that “patients use only bedside monitors obtained from a doctor or from Medtronic directly, to keep them plugged in so they can receive software updates, and that patients maintain 'good physical control' over the monitor,” according to the Star Tribune.

While it is possible to disable the wireless on the devices, the company urged patients and healthcare providers to continue to use it, noting that, “the benefits of remote monitoring outweigh the practical risk that these vulnerabilities could be exploited.” The company also advised that it is working on “updates to mitigate these vulnerabilities.”

Dr. Robert Kowal, chief medical officer for Medtronic’s cardiac rhythm and heart failure products, told the Star Tribune that to exploit the device a hacker would have to know its inner workings – and be about 20 feet or closer.

  Pages: 1 - 2 - 3 >>

Cardiology Homepage

You Must Be Logged In To Post A Comment

Increase Your
Brand Awareness
Auctions + Private Sales
Get The
Best Price
Buy Equipment/Parts
Find The
Lowest Price
Daily News
Read The
Latest News
Browse All
DOTmed Users
Ethics on DOTmed
View Our
Ethics Program
Gold Parts Vendor Program
Receive PH
Gold Service Dealer Program
Receive RFP/PS
Healthcare Providers
See all
HCP Tools
A Job
Parts Hunter +EasyPay
Get Parts
Recently Certified
View Recently
Certified Users
Recently Rated
View Recently
Certified Users
Rental Central
Rent Equipment
For Less
Sell Equipment/Parts
Get The
Most Money
Service Technicians Forum
Find Help
And Advice
Simple RFP
Get Equipment
Virtual Trade Show
Find Service
For Equipment
Access and use of this site is subject to the terms and conditions of our LEGAL NOTICE & PRIVACY NOTICE
Property of and Proprietary to, Inc. Copyright ©2001-2019, Inc.