In recent years, as medical devices have become more connected, cybersecurity experts have sounded the alarm on their vulnerabilities.
A panel at Health Journalism 2018 covered the topic, with experts encouraging reporters to ask their local hospitals about plans to safeguard medical devices from cyber threats.
Now, the Food and Drug Administration (FDA) is warning patients and health care providers that certain Medtronic MiniMed insulin pumps are being recalled due to potential cybersecurity risks. To date, there are no confirmed reports of patient harm, the FDA said.
Meanwhile, the FDA will hold a public discussion on medical device cybersecurity on Sept. 10 at its Patient Engagement Advisory Committee meeting. The committee is expected to make recommendations on what factors to consider when informing the public about cybersecurity risks.
Recommendations will also “address concerns patients have about changes to their devices to reduce cybersecurity risks as well as the role of other stakeholders such as health care providers in communicating cybersecurity risks to patients,“ according to the FDA.
The insulin pumps affected by the recall connect wirelessly to the patient’s glucose meter and a continuous glucose monitoring system, which track’s the patient’s glucose levels throughout the day. The concern is that an unauthorized person could change the insulin pump settings remotely and deliver too much or too little insulin to the patient, causing harm.
Suzanne Schwartz, M.D., deputy director of the Office of Strategic Partnerships and Technology Innovation and acting division director for All Hazards Response, Science and Strategic Partnerships in the FDA’s Center for Devices and Radiological Health, said in a statement that “any medical device connected to a communications network, like Wi-Fi, or public or home Internet, may have cybersecurity vulnerabilities that could be exploited by unauthorized users.”
Schwartz added “at the same time, it’s important to remember that the increased use of wireless technology and software in medical devices can also offer safer, more convenient, and timely health care delivery.”