Gross McGinley LLP

  • About
  • Attorneys
      • Safa Ashrafi
      • Kara M. Beck
      • Michael J. Blum
      • Robert M. Campbell
      • Thomas A. Capehart
      • Victor F. Cavacini
      • Sarah Hart Charette
      • Samuel E. Cohen
      • Adrian K. Cousens
      • J. Jackson Eaton, III
      • Malcolm J. Gross 
      • John F. "Jack" Gross
      • Kimberly G. Krupka
      • Anne K. Manley
      • Paul A. McGinley
      • R. Nicholas Nanovic
      • Constance K. Nelson
      • Kellie L. Rahl-Heffner
      • H. Ross Ramaley
      • Patrick J. Reilly
      • Thomas E. Reilly, Jr.
      • Nicholas Sandercock
      • Graig M. Schultz
      • Stuart T. Shmookler
      • Loren L. Speziale
      • Howard S. Stevens
      • Allen I. Tullar
      • Jason A. Ulrich
      • Jennifer L. Weed
      •  
      • View All Attorneys
      • View All Paralegals
  • Practice Areas
      • Business Law
      • Criminal Defense
      • Divorce and Family Law
      • Elder Law
      • Employment Law
      • Insurance Defense
      • Intellectual Property
      • Internet Law
      • Litigation
      • Medical Malpractice Defense
      • Real Estate
      • Tax Law
      • Wills, Trusts, & Estates
      •  
  • Industries
      • Banking
      • Health Care
      • Media and Publishing
      • Municipal
      • Non-Profit
      •  
  • News
      • Gross McGinley Law Firm Donates $13,000 to Greater Lehigh Valley Nonprofits
        Dec 18th, 2020| Firm News
      • Gross McGinley Promotes Sarah Hart Charette and Kellie Rahl-Heffner to Partner Attorneys
        Dec 18th, 2020| Attorney News
      • Gross McGinley Launches Giving Back Tuesday 2020 Program
        Nov 19th, 2020| Firm News
  • Blog
      • Is My Bar or Restaurant Eligible for a Round 2 PPP Loan?
        Jan 19th, 2021
      • Can Employers Require the COVID-19 Vaccination?
        Jan 18th, 2021
      • Can I Get Pulled Over for Violating Coronavirus Travel Restrictions?
        Jan 8th, 2021
  • Careers
  • 610.820.5450
  • Contact Us
  • Make a Payment

Following CDC and state guidance, we are offering in-person and remote legal services to our clients. Please call us at 610.820.5450 for assistance with your legal needs or visit our COVID-19 page for insights on pandemic-related matters.

gross-headerimg-3
Gross McGinley LLP > Blog > Medical Device Vulnerable to Hackers
Blog Disclaimer

Blog Disclaimer

This Blog is intended for educational and informational purposes and intended to only provide you with a general understanding of the law, not to provide any legal advice, including on the subject of the Blog. Laws that may pertain to this Blog will vary by jurisdiction, and the information on this blog may not apply to you. The content within this Blog is not intended, and should not be construed, in any way to be legal advice and thus you should not rely on any information provided in the Blog as legal advice. You should consult with appropriate legal counsel concerning any issues for which legal advice may be needed. Your review or use of the Blog and the content therein is not intended to create, and does not constitute, an attorney-client relationship. Please contact us if you have any questions about a Blog or would like more information, but, by contacting us, no attorney-client relationship is formed between you and Gross McGinley, LLP, including the Blog author. Do not send any confidential information to Gross McGinley, LLP or the authors of the Blog without first speaking to one of our lawyers and receiving our permission to provide confidential information. Unsolicited confidential information sent to us may not be subject to an attorney-client privilege and may not be treated as confidential. This Blog is not published for advertising or solicitation purposes. Gross McGinley, LLP disclaims all liability to all persons for any claim, loss, liability or any damages that may arise in connection with the Blog and any content or information contained in the Blog. Even though we strive to create our Blog content based on our current understanding of the law, we cannot and do not guarantee that the content and information in the Blog is current, accurate, or complete. Gross McGinley, LLP owns the copyright in the Blog, which is protected by federal and state laws, including copyright laws. The Blog cannot be altered or modified in any way. A copy of the Blog may be used and printed only for personal, educational, informational and noncommercial purposes. The Blog cannot be used for any other purpose without the express permission of Gross McGinley, LLP.

Medical Device Vulnerable to Hackers

Written by: Jennifer L. Weed on June 05, 2019 | Category: Blog | Tags: Medical Malpractice Defense, Privacy and Data Security

    Share

  • Facebook
  • Twitter
  • Google Plus
  • LinkedIn

The world’s largest medical device manufacturer, Medtronic, Inc. – based in Minnesota –  recently announced that many of its implanted cardiac defibrillators use an unencrypted wireless program that could allow computer hackers to change the settings. The defibrillators at issue are used to correct life-threatening arrhythmias.

The Cybersecurity and Infrastructure Security Agency, a division of the U.S. Department of Homeland Security, issued a  Medical Advisory bulletin on March 21, 2019, advising that Medtronic devices utilizing the Conexus telemetry protocol in cardiac defibrillators “may allow an attacker with adjacent short-range access to one of the affected products to interfere with, generate, modify, or intercept the radio frequency (RF) communication of the Medtronic proprietary Conexus telemetry system, potentially impacting product functionality and/or allowing access to transmitted sensitive data.”  Conexus is a wireless protocol which links the defibrillators with home monitors and with physicians and device programmers in remote locations.  The flaw identified in the communication protocol was given a vulnerability score of 9.3, close to the top of the 10-point scale. The bulletin states that an unauthorized individual with a “low skill level” could gain access to the equipment’s setting and possibly change them. Approximately 750,000 heart devices are affected, according to Medtronic.

To date, there are no reported cases of unauthorized hackers changing the settings on implanted cardiac defibrillators. The Agency stated that while a successful attack would not be difficult to pull of technically, the likelihood of an attack succeeding was low because the devices use radio frequency transmissions, and therefore can transmit only about 20 feet.  Accordingly, a would-be hacker would need to be in the same room as the targeted equipment.

In response to the Homeland Security bulletin, Medtronic said it planned to develop a software program to fix to its Conexus protocol.  In the meantime, the FDA advised that patients should keep their equipment plugged in at all times so that it can receive updates. The FDA does not intend to issue a recall at this time.


Attorney Jennifer Weed is a member of the firm’s Medical Malpractice Defense Group, counseling hospitals and medical professionals in medical malpractice litigation and risk management matters.

News/Blog Archives

  • 2021
    • January 2021 (3)
  • 2020 • 2019 • 2018 • 2017 • 2016 • 2015 2014 • 2013 • 2012 • 2011 • 2010 • 2009 • 2008 2007 • 2006 • 2005 • 2004 • 2003 • 2000

Popular Tags

  • Community Involvement (221)
  • Litigation (127)
  • Employment Law (104)
  • Estate Planning & Administration (77)
  • Business Law (75)
  • COVID-19 (58)
  • Intellectual Property (51)
Wills, Trusts, & Estates

Spotlight: Wills, Trusts, & Estates

Wills and Estates Group

Gross McGinley’s Wills and Estates Group lawyers provide a mix of legal services to protect your family and help you plan for a secure future. Our attorneys are skilled and k… Read More

Sign up for Legal Updates

  • This field is for validation purposes and should be left unchanged.
  • Meet the Attorneys
  • Practice Areas
  • News & Blog
Next Previous
  • Malcolm J. Gross  view profile

  • Victor F. Cavacini view profile

  • Jason A. Ulrich view profile

11 View All Attorneys
  • Tax Law

    Tax Law

    more info
  • Wills, Trusts, & Estates

    Wills, Trusts, & Estates

    more info
  • Divorce and Family Law

    Divorce and Family Law

    more info
5 View All Practice Areas
  • Is My Bar or Restaurant Eligible for a Round 2 PPP Loan?

    Is My Bar or Restaurant Eligible for a Round …

    continue reading
  • Can Employers Require the COVID-19 Vaccination?

    Can Employers Require the COVID-19 Vaccinatio…

    continue reading
  • Can I Get Pulled Over for Violating Coronavirus Travel Restrictions?

    Can I Get Pulled Over for Violating Coronavir…

    continue reading
336 View Blog
  • Instagram
  • LinkedIn
  • Facebook
  • Twitter
  • YouTube
Super Lawyers Million Dollar Advocates NBLSC Board Certified Lawyers
Our Locations: Allentown • Easton • Lehighton
  • Allentown 33 S. Seventh Street, P.O. Box 4060
    Allentown, PA 18105-4060
    Telephone: (610) 820-5450
    Fax: (610) 820-6006
  • Easton 101 Larry Holmes Drive, Suite 202
    Easton, PA 18042
    Telephone: (610) 258-1506
    Fax: (610) 820-6006
  • Lehighton 415 Mahoning St.
    Suite A
    Lehighton, PA 18235
    Telephone: (610) 820-5450
    Fax: (610) 820-6006

Copyright © 2021 Gross McGinley LLP. All rights reserved. | Privacy Policy and Terms of Use Secure File Portal