Medtronic Release Security Advisory

Medtronic has released a security advisory that addresses a vulnerability affecting their cardiac implantable programmers.

Threat ID:: CC-2847
Category:
Threat Severity:: Low
Threat Vector:
Published:: 18 December 2018 12:00 AM

Report a cyber attack: call 0300 303 5222 or email [email protected]

This content has been archived

This article no longer conforms to NHS Digital's standards for cyber alerts, and may contain outdated or inaccurate information. Use of this information contained in this page is at your own risk

Summary

Medtronic has released a security advisory that addresses a vulnerability affecting their cardiac implantable programmers.

Threat details

If exploited, this vulnerability may allow an attacker with physical access to an affected Medtronic Programmer to access to Patient Health Records (PHR) or Personally Identifiable Information (PII) stored on the device.

For further information:

ICS-CERT Advisory ICSMA-18-347-01

Remediation

Users and administrators are encouraged to review the security advisory and apply the necessary updates and mitigations

Remediation steps

Type	Step
	Users and administrators are encouraged to review the security advisory and apply the necessary updates and mitigations

Last edited: 17 February 2020 1:00 pm