Abbott patches pacemaker software to guard against hacks

by Susie Olson August 31, 2017, 1:36
Abbott patches pacemaker software to guard against hacks

It's probably the most crucial patch of the year: Abbott Laboratories' reworked firmware for its St Jude pacemakers has won Food and Drug Administration approval to ship.

Still, even though there's not a ton of risk of having your pacemaker hacked in public, the FDA recommends that patients with the device make an appointment with their doctors to get the firmware update.

The recall says patients could be at risk of someone taking advantage of cybersecurity holes in vulnerable pacemakers. A hacker could change a pacemaker's programming, which could drain the battery or deliver.

While St. Jude built patches for these flaws, this newest FDA alert provides the framework to fix the vulnerabilities.

Unfortunately, installing the firmware update can result in a failure to update altogether, the loss of programmed settings, the loss of diagnostic data, as well as a very small risk - 0.003 percent - of complete functionality loss.

The company also says the risks of performing the update are low based on its previous experience with firmware updates.

"These planned updates further strengthen the security and device management tools for our connected cardiac rhythm management devices", Abbott spokeswoman Candace Steele Flippin said via e-mail.

Pessimism as Kushner sets off for Israeli-Palestinian talks
One of Abbas's close confidantes has said it is not logical that Hamas has a government in Gaza and the PA funds it. It has to be workable to both sides.

And although there have been no reports of actual harm to patients due to hackers exploiting the vulnerabilities in the devices, "that number can go from zero to a lot of patients quickly" if hackers decide to launch attacks, Corman warns.

But as a precaution, Abbott says that pacing dependent patients should be given the update in a facility where temporary pacing and a pacemaker generator are on hand.

The update is for pacemakers with radio frequency (RF) telemetry capabilities, meaning that they are wirelessly connected by radio waves for recording and transmitting the readings of the devices.

This marks the second time Abbott has issued a cybersecurity-related update for its St. Jude cardiac devices.

The update comes a year after the financial firm Muddy Waters shorted St. Jude's stock and announced what it said were grave cybersecurity vulnerabilities that render St. Jude heart-rhythm devices vulnerable to computer hacking.

The network-enabled cardiac pacemakers, originally manufactured by St. Jude Medical, came under fire in August 2016 after the investment firm Muddy Waters Capital reported the devices had "little to no built-in security". The device will run on backup mode during the process, but all life-sustaining features will still be available.


TOP News

Texas Dog Preparing for Hurricane Harvey Becomes Local Hero
This fantastic doggo definitely has his priorities right as he carries a bag full of dog food to safety. Otis's owner goes on to say that the fearless dog will get a hamburger at Dairy Queen for dessert.

Uber's new CEO: 'This company has to change'
Okerstrom will also join the company's board of directors, and Khosrowshahi will continue to be a member of Expedia's board. Uber board recently stated that " We're really fortunate to gain a leader with Dara's experience , talent and vision".

Rohingya Muslims 'under fire' asthey cross river into Bangladesh
Members of the Muslim Rohingya minority escaped to the border with Bangladesh but Bangladeshi border guards are turning them back. An estimated 150 insurgents attempted to storm the base but "soldiers fought back", authorities said.

Here are the people Taylor Swift targetted in her new music video
The single is the first of many from a new Swift album all due for release in November, titled " Reputation ". Taylor was, presumably, talking about keeping the release of " Look What You Made Me Do " as the secret.

Lions' Matthew Stafford Becomes NFL's Highest Paid Player Ever
Oakland Raiders quarterback Derek Carr was previously the highest paid with a contract that pays him $25 million annually. Last year Stafford led the Lions to a playoff berth despite losing future hall of famer, Calvin Johnson.

Google launches a dedicated site promoting certified Android devices
The updated app precautions build on Google Play Protect, another security offering that rolled out in May. Once that's done, you have the updated Launcher3 on your phone, complete with Android Oreo customizations.

Trump is publicly sparring with yet another Republican senator
The Tennessean reported on Thursday that a former state representative, Joe Carr, was considering a challenge to Corker next year. Green announced in early August that he did not intend to run against Corker in 2018 based on how "everything sits right now".

Texas woman, daughter rescued from high water; only child survives
The death toll is expected to rise significantly once floodwaters recede in the coming days and weeks. "But it's heart-wrenching to think of her growing up without her mother".

Olympic runner David Torrence found dead in Arizona swimming pool
He was also the defending champion, and Merber tweeted that the race will will be renamed in his friend's honor. Rio Olympian David Torrence was found dead in a swimming pool in Arizona .

QB Newton, WR Samuel to see first game action tonight
That stats back up the fact that Bortles is the more mobile quarterback and could help to extend plays with his legs. What happens after that is unclear, but losing your job to a journeyman is never a good thing.