Medtronic has recalled certain MiniMed insulin pumps due to cybersecurity risks, and will provide alternative pumps to the estimated 4,000 U.S. patients using the pumps, the Food and Drug Administration announced yesterday. The small computerized pumps deliver insulin to a patient throughout the day through a catheter implanted under the skin, and wirelessly connect to a meter and monitoring system that measure and track the patient’s blood glucose levels. FDA said someone other than a patient or care provider could connect wirelessly to the pump and change its settings or stop insulin delivery, leading to high or low blood sugar or a buildup of acids in the blood. The agency recommends health care providers review with patients who have a recalled device the recommended safety precautions while waiting for a replacement device. FDA also urges device manufacturers to monitor and assess cybersecurity vulnerability risk and “be proactive about disclosing vulnerabilities and mitigations to address them,” said Suzanne Schwartz, M.D., deputy director of the Office of Strategic Partnerships and Technology Innovation at FDA’s Center for Devices and Radiological Health.

Related News Articles

Headline
The Cybersecurity and Infrastructure Security Agency, FBI and National Security Agency yesterday issued an advisory to help organizations secure their…
Headline
John Riggi, AHA’s senior advisory for cyber security and risk, speaks with Edward You, supervisory special agent in the FBI’s Weapons of Mass Destruction…
Headline
Cordis Corporation recently recalled 25,000 catheters used to visualize and measure parts of the vascular system, due to the potential for their marker…
Headline
The National Institute of Standards and Technology will work with technology leaders to develop a framework to improve security in the technology supply chain…
Headline
The FBI today released an alert on Hive ransomware, which uses mechanisms such as phishing emails with malicious attachments and Remote Desktop Protocol to…
Headline
The FBI yesterday alerted U.S. organizations to ransomware attacks by a group using phishing emails to access victim networks and download Cobalt Strike threat…