Homeland Security Warns Heart Devices Contain Cybersecurity Vulnerability

As many as 750,000 heart devices made by Medtronic PLC contain a serious cybersecurity vulnerability that could let an attacker with sophisticated insider knowledge harm a patient by altering programming on an implanted defibrillator, company and federal officials said. The Homeland Security Department, which oversees security in critical U.S. infrastructure including medical devices, issued an alert describing two types of computer-hacking vulnerabilities in 16 different models of Medtronic implantable defibrillators sold around the world, including some still on the market today.