Medical device company Medtronic issued an ‘urgent recall’ for remote controllers for insulin pumps, namely the MiniMed 508 insulin pump and the MiniMed Paradigm family of insulin pumps due to the potential risk of hacking.
According to the recall statement, the vulnerable models are MMT-500 and MMT-503, used with Medtronic MiniMed 508 insulin pump and the MiniMed Paradigm products. The issue was identified in 2018, when a security researcher found that an attacker in close proximity of an insulin pump user could copy the wireless RF signals from the user’s remote controller and deliver or block a dose of insulin, which could be dangerous for diabetic patients using the pumps.
In 2018, Medtronic issued an initial alert advising insulin pump users to disable the remote bolus feature, when not in use. Now, the company said people should not use the MiniMed remote controller.
“After further review, Medtronic has determined that the potential risks associated with the MiniMed remote controller outweigh the benefits of its continued use. Therefore, we are providing updated instructions to further address this risk,” the company said.
“You should immediately stop using and disconnect the remote controller, disable the remote feature, and return the remote controller to Medtronic.”
The company added that it wasn’t aware of any reports of injuries caused by this issue.