Privacy & Security

Abbott releases firmware patch to fix cybersecurity flaws in 350,000 medical devices

The device manufacturer acquired St. Jude Medical last year and has since been working to fix severe vulnerabilities found in its pacemakers.
By Jessica Davis
April 19, 2018
12:39 PM

Abbott released its second and final round of planned cybersecurity updates to its pacemakers, programmers and remote monitoring systems to fix severe cybersecurity flaws in the devices.

The patch will update the battery performance alert, allowing the device to monitor for abnormal battery behavior and automatically vibrate to tell the patient when something is wrong.

The planned updates began last year, and the latest firmware update was approved by the Food and Drug Administration last week. The update applies to about 350,000 of Abbott’s implantable cardioverter defibrillators and implantable cardiac resynchronization therapy defibrillators.

[Also: FDA to patients with St. Jude pacemakers: Update needed to keep hackers out of devices]

The devices were originally manufactured by St. Jude Medical, which Abbott acquired last year.

At that time, St. Jude was under fire for remaining quiet about defibrillator issues that caused rapid battery depletion. The FDA found St. Jude continued to ship these devices despite knowing about the defect. In fact, the agency found those flaws caused patient deaths.

[Also: St. Jude admits security vulnerabilities in cardiac devices]

The flaws, made public in 2016 by Muddy Waters and security firm MedSec, could allow an unauthorized user to access the defibrillators and modify the programming controls. Since acquiring St. Jude, Abbott has been working to patch those vulnerabilities.

The FDA’s recall notice said the firmware update will reduce the risk of patient harm due to premature battery depletion and potential exploitation of the flaws in the devices. The update will effectively complete the necessary patches to prevent unauthorized access.

The update is not a response to any new flaws, but are merely a continuation of last year’s patches, according to officials.

"Technology and its security are always evolving, and this firmware upgrade is part of our commitment to ensuring our products include the latest advancements and protections for patients," said Robert Ford, executive vice president of medical devices at Abbott, in a statement.

Twitter: @JessieFDavis
Email the writer: jessica.davis@himssmedia.com

Topics: 
Medical Devices, Privacy & Security

More regional news

Walmart store

Walmart announces closing of clinics and virtual care

By
Susan Morse
May 01, 2024
Hacker with glasses and hat looking at two screens with data and code

Ransomware was used in 72% of network intrusions last year, says BakerHostetler

By
Andrea Fox
May 01, 2024
Amanda Bury, chief commercial officer at Infermedica

Telemedicine, enabled with responsible AI, can improve the patient experience

By
Bill Siwicki
May 01, 2024
Want to get more stories like this one? Get daily news updates from Healthcare IT News.
Your subscription has been saved.
Something went wrong. Please try again.

Top Story

Doctors review practice finances
LLMs are not ready to automate clinical coding, says Mount Sinai study

Most Read

WebMD acquires Healthwise to bolster patient engagement and growth
How the Change Healthcare cyberattack is straining providers, and what the government can do
HHS response to cash flow concerns from Change cyberattack inadequate, providers say
After Change Healthcare, more effort needed to avoid cyberattack chain reactions
HIMSSCast: Web apps are ubiquitous in healthcare – and come with vulnerabilities
Change Healthcare begins to restore service after cyberattack – as lawsuits begin

Research

White Papers

More Whitepapers

Compliance & Legal
Artificial Intelligence
Analytics

Webinars

More Webinars

Privacy & Security
Artificial Intelligence
Analytics

Video

Dr. Guido Giunti at Trinity College Dublin_Palm trees and skyscrapers in Orlando Photo by Gabriele Maltinti/iStock/Getty Images Plus
Novel digital therapeutics for MS empower patients
Kendall Brown at CenTrak_Palm trees and skyscrapers in Orlando Photo by Gabriele Maltinti/iStock/Getty Images Plus
How HIMSS membership can grow healthcare careers
Ellen Arigorat at NewYork-Presbyterian Hospital Palm trees and skyscrapers in Orlando Photo by Gabriele Maltinti/iStock/Getty Images Plus
HIMSS Changemaker champions Filipino-American health literacy
Sponsored by Minsait
Gustavo Adolfo Torres Becerra at Minsait__Palm trees and skyscrapers in Orlando Photo by Gabriele Maltinti/iStock/Getty Images Plus
Healthcare organizations need interoperability to give residents preventative care

More Stories

Health professional at desktop computer
How AI-powered systems can help physician groups improve coding – and earn more
Nurse huddle with tablet
Nurses have a deep distrust of AI – but transparency and training could help
Dr. Jonah Feldman at NYU Langone Health System_Palm trees and skyscrapers in Orlando Photo by Gabriele Maltinti/iStock/Getty Images Plus
Want to reduce readmissions? Personalize digital discharge guides
Gabriel Garcia-Lopez at the Los Angeles LGBT Center Palm trees and skyscrapers in Orlando Photo by Gabriele Maltinti/iStock/Getty Images Plus
From HIMSS conference attendee to 2024 HIMSS Changemaker
Kaiser building
Kaiser reports 13.4 million people affected by data breach
Stethoscope on tablet
HIMSSCast: The need for home care continues
Change Healthcare booth and sign
MGMA asks OCR: Hold UHG responsible for HIPAA breach notifications
A person in a suit holds graphic healthcare solutions in one hand, and a graphic of people in the other.
Vendor Notebook: Salesforce extends AI to public health services, DrFirst acquires Myndshft