Skip to main content

Medtronic Commissions Security Audit of ‘Hackable’ Insulin Pumps

Medical equipment maker Medtronic has commissioned software security firms to audit the safety of its insulin pumps.

The call for investigation comes after it was claimed that hackers were capable of hacking into one of its insulin pumps to inject heavy dose of insulin to a person, causing certain death.

The company told Reuters that even though there was no evidence to claim that such types of cyber attack had been carried out, the company was leaving no stone unturned when it comes to unearthing vulnerability.

Security software maker McAfee, which is now owned by Intel, had claimed to have found one such vulnerability in one of Medtronic's insulin pumps on Friday. Both Medtronic and McAfee declined to reveal exactly which model of insulin pump was affected with the vulnerability and how many of its units had been sold to the public.

"This is an evolution from having to think about security and safety as a healthcare company, and really about keeping people safe on our therapy, to this different question about keeping people safe around criminal or malicious intent," Catherine Szyman, president of Medtronic's diabetes division, told Reuters.

Medtronic also revealed that back in August when it was made aware of some minor vulnerability in its system, it had hired McAfee rival Symantec and other smaller security firms to deal with them.