Security Alerts & News
by Tymoteusz A. Góral

History
#1380 Pacemaker hacking fears rise with critical research report
Pacemakers, defibrillators and other medical devices made by a leading medical equipment maker are vulnerable to potentially “catastrophic” cyberattacks. With relatively little effort tens of thousands of cardiac devices made by St. Jude Medical are vulnerable to attack, according a report released by private equity firm Muddy Waters Capital with help from medical researchers at MedSec.

The report claims major cybersecurity flaws are riddled throughout St. Jude Medical device portfolio and are tied to the company’s Merlin@home home monitoring units that “greatly open up the STJ ecosystem to attacks,” according to the report (PDF) released Thursday.

“These units (Merlin@home) are readily available on Ebay, usually for no more than $35. Merlin@homes generally lack even the most basic forms of security, and as this report shows, can be exploited at every level of the technology stack of St. Jude’s Cardiac Devices,” authors of the report wrote.
Read more
#1380 Pacemaker hacking fears rise with critical research report
#1379 Trident: Trio of iOS zero-days being exploited in the wild
#1378 Inside ‘The attack that almost broke the internet’
#1377 Japan to train personnel to counter cyberattacks on infrastructure
#1376 EU copyright reform proposes search engines pay for snippets
#1375 Fantom ransomware encrypts your files while pretending to be Windows update
#1374 RIPPER ATM malware and the 12 million baht jackpot
#1373 Hacker who stole 2.9 million credit card numbers is Russian lawmaker’s son
#1372 Mozilla launches free website security scanning service
#1371 Opera warns Sync users of possible data breach
History
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12