Medical device company, Medtronic, disabled internet updates over concerns about hacking risk. A flaw in the CareLink devices, which provide information to doctors of cardiac patients, has concerned the FDA.
The flaw could allow hackers to change the device’s function as it doesn’t require programmers to verify that they are still connected to a virtual private network (VPN) before downloading updates.
The fix will prevent existing programmers from accessing the Medtronic software distribution network and will require updates only through a USB update. Read more.
Source: Healthcare IT News