In-brief: In a damning report, the FDA said that St. Jude Medical* knew about serious security flaws in its implantable medical devices as early as 2014, but failed to address them with software updates or other mitigations, or by replacing those devices. (Editor’s note: updated to include a statement from Abbott and comment from Dr. Kevin Fu. – PFR April 14, 2017)
In-brief: Almost 1.4 billion data records were exposed in 2016, many of them lost as a result of identity theft, the security firm Gemalto reported Tuesday.
In-brief: The FBI is telling medical and dental offices to lock down anyFile Transfer Protocol (FTP) servers in their environments, warning that cyber criminals are searching for exposed FTP servers as a pathway to sensitive networks and protected health information (PHI).
In-brief: The recently disclosed trove of personnel files by an US Air Force officer is one piece of a much larger phenomenon: exposed, vulnerable and Internet-connected network attached storage (or NAS) devices chock full of gigabytes sensitive data.
In-brief: A website run by the National Health ISAC will serve as a clearing house for information on security vulnerabilities in medical devices, the first of its kind in the US.
