Medical Device Security

Overview

This case study explores the security landscape of medical devices, detailing real-world vulnerabilities, attack scenarios, and mitigation strategies as well as regulatory efforts by the FDA.

Vulnerability Details

Medical devices—from implantable defibrillators to network-connected hospital equipment—are increasingly becoming targets for cyber attacks. This presentation discusses notable case studies such as the Barnaby Jack pacemaker hack, the 2014 FDA guidance on cybersecurity, and the evolution of medical threats over time. The risks, vulnerabilities, and strategic responses to these threats highlight the importance of securing healthcare technologies.

Resources

Further reading and media on medical device security.

Review Questions

What is one of the main cybersecurity concerns related to network-connected medical devices?
Which researcher is known for demonstrating a wireless attack on pacemakers?
What did the FDA recommend in its 2014 guidance regarding cybersecurity in medical devices?
Which of the following was NOT listed as a historical medical device failure?
What is a major barrier to keeping hospital devices secure through software patches?