7 October 2021

Medtronic issues ‘urgent recall’ for insulin pump controllers due to cybersecurity risks


Medtronic issues ‘urgent recall’ for insulin pump controllers due to cybersecurity risks

Medical device company Medtronic issued an ‘urgent recall’ for remote controllers for insulin pumps, namely the MiniMed 508 insulin pump and the MiniMed Paradigm family of insulin pumps due to the potential risk of hacking.

According to the recall statement, the vulnerable models are MMT-500 and MMT-503, used with Medtronic MiniMed 508 insulin pump and the MiniMed Paradigm products. The issue was identified in 2018, when a security researcher found that an attacker in close proximity of an insulin pump user could copy the wireless RF signals from the user’s remote controller and deliver or block a dose of insulin, which could be dangerous for diabetic patients using the pumps.

In 2018, Medtronic issued an initial alert advising insulin pump users to disable the remote bolus feature, when not in use. Now, the company said people should not use the MiniMed remote controller.

“After further review, Medtronic has determined that the potential risks associated with the MiniMed remote controller outweigh the benefits of its continued use. Therefore, we are providing updated instructions to further address this risk,” the company said.

“You should immediately stop using and disconnect the remote controller, disable the remote feature, and return the remote controller to Medtronic.”

The company added that it wasn’t aware of any reports of injuries caused by this issue.


Back to the list

Latest Posts

LightBasin hackers compromised 13 global telecoms in just two years

LightBasin hackers compromised 13 global telecoms in just two years

LightBasin is active since at least 2016 and is focused on Linux and Solaris servers, only interacting with Windows systems as needed.
20 October 2021
Suspected Chinese hackers reportedly hit 9 Israeli hospitals

Suspected Chinese hackers reportedly hit 9 Israeli hospitals

Attempted attacks come days after a massive ransomware attack on Hillel Yaffe Medical Center, attributed to the DeepBlueMagic group.
19 October 2021
State-sponsored hackers target orgs in South Asia with custom backdoor

State-sponsored hackers target orgs in South Asia with custom backdoor

Harvester has been observed using both custom malware and publicly available tools, such as Cobalt Strike Beacon and Metasploit, in their attacks.
19 October 2021