FDA Issues Recall on Pacemakers Due to Security Vulnerabilities -- Security Today

FDA Issues Recall on Pacemakers Due to Security Vulnerabilities

The FDA issued a security advisory, warning that the pacemakers must be recalled on a voluntary basis. The devices are much “smarter” than previous models, opening up the possibilities of being tampered with by cyber criminals.

Aug 31, 2017

Pacemakers by Abbott (formerly St. Jude Medical) have been recalled by the U.S. Food and Drug Administration due to security vulnerabilities – prompting an estimated 465,000 patients with heart conditions across the country to need to visit their doctor to have theirs updated.

The pacemakers need to be given a firmware update to protect them against vulnerabilities which could drain battery life, allow hackers to change programmed settings or even change its beats and rhythm.

This poses a problem – seeing as the recalled devices are embedded in patients’ chests.

In a letter sent to doctors, Abbott admitted that the update, approved by the FDA on August 23, could not be delivered over the air and will require about three minutes in the presence of the patient to download and install while in backup mode.

Patients are asked to contact their doctors to book themselves an appointment to get the update. However, in the letter, doctors are advised by Abbott to update only if it is "appropriate given the risk of update for the patient."

Patients with a RF-enabled St. Jude pacemaker or cardiac pacemaker, as well as healthcare professionals who are using these devices presently in hospitals to treat conditions including heart failure and irregular heart rhythms, must make sure a firmware update is applied to these devices. This specifically includes the Accent, Anthem, Accent MRI, Accent ST, Assurity and Allure models.

"The FDA reminds patients, patient caregivers, and health care providers that any medical device connected to a communications network (e.g. Wi-Fi, public or home Internet) may have cybersecurity vulnerabilities that could be exploited by unauthorized users," the FDA said in its announcement. "However, the increased use of wireless technology and software in medical devices can also often offer safer, more efficient, convenient, and timely health care delivery."

Featured

66 Percent of Cybersecurity Pros Say Job Stress is Growing

Sixty-six percent of cybersecurity professionals say their role is more stressful now than it was five years ago, according to the newly released 2024 State of Cybersecurity survey report from ISACA, a global professional association advancing trust in technology. Read Now
- Cybersecurity
Live from GSX 2024: Post-Show Recap

Another great edition of GSX is in the books! We’d like to thank our great partners for this years event, NAPCO, LVT, Eagle Eye Networks and Hirsch, for working with us and allowing us to highlight some of the great solutions the companies were showcasing during the crowded show. Read Now
- Industry Events
- GSX
Research: Cybersecurity Success Hinges on Full Organizational Support

Cybersecurity is the top technology priority for the vast majority of organizations, but moving from aspiration to reality requires a top-to-bottom commitment that many companies have yet to make, according to new research released today by CompTIA, the nonprofit association for the technology industry and workforce. Read Now
- Cybersecurity
Live from GSX 2024: Day 3 Recap

And GSX 2024 in Orlando, is officially in the books! I’d like to extend a hearty congratulations and a sincere thank-you to our partners in this year’s Live From program—NAPCO, Eagle Eye Networks, Hirsch, and LVT. Even though the show’s over, keep an eye on our GSX 2024 Live landing page for continued news and developments related to this year’s vast array of exhibitors and products. And if you’d like to learn more about our Live From program, please drop us a line—we’d love to work with you in Las Vegas at ISC West 2025. Read Now
- Industry Events
- GSX

Webinars

Push-to-Talk over Cellular – The NEXT Revolution
Napco Access Pro, Eagle Eye Networks Inc, Occupational Health & Safety, Security Today

The Security and Safety Summit
Salient Systems, Hanwha Vision (formerly Hanwha Techwin), Omnilert, Eagle Eye Networks Inc, HID Global, i-PRO Americas Inc., Arcules, Napco Access Pro

Before And After The School Bell Rings: K-12 Life Safety is 24-7-365

Whitepapers

Securitas Technology

Optimizing Security and Business Performance
American Funding Solutions

Securing Cash Flow: How Invoice Factoring Helps Security Companies Grow
Arcules

Physical security shift happens

New Products

4K Video Decoder

3xLOGIC’s VH-DECODER-4K is perfect for use in organizations of all sizes in diverse vertical sectors such as retail, leisure and hospitality, education and commercial premises. 3
AC Nio

Aiphone, a leading international manufacturer of intercom, access control, and emergency communication products, has introduced the AC Nio, its access control management software, an important addition to its new line of access control solutions. 3
Camden CV-7600 High Security Card Readers

Camden Door Controls has relaunched its CV-7600 card readers in response to growing market demand for a more secure alternative to standard proximity credentials that can be easily cloned. CV-7600 readers support MIFARE DESFire EV1 & EV2 encryption technology credentials, making them virtually clone-proof and highly secure. 3

FDA Issues Recall on Pacemakers Due to Security Vulnerabilities

Securitas Joins AI Pact for Responsible AI Use

16,000 Registrants from 86 Nations Participate in GSX 2024

Security Industry Association Announces Winners for the 2024 James Rothstein Business Scholarship

PureTech Systems Inc. Awarded Major Command and Control Contract by U.S. Government to Enhance National Security

Local Law Enforcement Heroes Honored at a Challenge Coin Ceremony Hosted by 3Si at GSX 2024

IDIS Americas Releases AI-Powered, License-Free VMS

Biden Administration Proposes Ban on Chinese Vehicles and Russian Tech for Autonomous Vehicles on U.S. Roads