{"id":18648,"date":"2017-10-06T05:00:27","date_gmt":"2017-10-06T12:00:27","guid":{"rendered":"http:\/\/www.yardi.com\/blog\/?p=18648"},"modified":"2020-12-24T22:33:12","modified_gmt":"2020-12-25T06:33:12","slug":"pacemaker-panic","status":"publish","type":"post","link":"https:\/\/www.yardi.com\/blog\/pacemaker-panic\/","title":{"rendered":"Pacemaker Panic"},"content":{"rendered":"<p>The FDA recently released an emergency notice last recalling several implantable pacemakers due to recently discovered cyber security vulnerabilities. According to the FDA, devices manufactured by Abbott\u2019s (formerly St. Jude Medical) could be compromised by hackers with exploits that would allow a third party to affect the speed of the device or deplete its batteries<a href=\"http:\/\/www.yardi.com\/blog\/news\/pacemaker-panic\/18648.html\/attachment\/shutterstock_519010477\" rel=\"attachment wp-att-18660\"><img loading=\"lazy\" decoding=\"async\" class=\"alignright wp-image-18660\" src=\"https:\/\/www.yardi.com\/blog\/wp-content\/uploads\/sites\/15\/2017\/08\/shutterstock_519010477.jpg\" alt=\"shutterstock_519010477\" width=\"474\" height=\"316\" srcset=\"https:\/\/www.yardi.com\/blog\/wp-content\/uploads\/sites\/15\/2017\/08\/shutterstock_519010477.jpg 1000w, https:\/\/www.yardi.com\/blog\/wp-content\/uploads\/sites\/15\/2017\/08\/shutterstock_519010477.jpg?resize=768,512 768w, https:\/\/www.yardi.com\/blog\/wp-content\/uploads\/sites\/15\/2017\/08\/shutterstock_519010477.jpg?w=400 400w, https:\/\/www.yardi.com\/blog\/wp-content\/uploads\/sites\/15\/2017\/08\/shutterstock_519010477.jpg?w=500 500w, https:\/\/www.yardi.com\/blog\/wp-content\/uploads\/sites\/15\/2017\/08\/shutterstock_519010477.jpg?w=600 600w, https:\/\/www.yardi.com\/blog\/wp-content\/uploads\/sites\/15\/2017\/08\/shutterstock_519010477.jpg?w=720 720w, https:\/\/www.yardi.com\/blog\/wp-content\/uploads\/sites\/15\/2017\/08\/shutterstock_519010477.jpg?w=800 800w\" sizes=\"auto, (max-width: 474px) 100vw, 474px\" \/><\/a>. Fortunately, a simple firmware update will protect patients from any outside interference.<\/p>\n<p><strong>Frequency Failure<\/strong><\/p>\n<p>According to the FDA, hackers could take advantage of radio-frequency-enabled pacemakers to compromise the device\u2019s authentication algorithm. Under the right circumstances, bypassing the device\u2019s authentication key and time stamp would allow a nearby attacker to send <a href=\"https:\/\/ics-cert.us-cert.gov\/advisories\/ICSMA-17-241-01\" target=\"_blank\" rel=\"noopener\">\u201cunauthorized commands<\/a>\u201d to the pacemaker via RF communications. Additionally, because the number of \u201cRF wake-up\u201d commands are not limited by these specific pacemakers, a third-party could repeatedly send commands to the device to drain its battery life. Both the Accent and Anthem pacemakers could also potentially reveal patient information to unauthorized parties.<\/p>\n<p>As of yet, there are no reports of any real-world infiltrations, and both the FDA and the Department of Homeland Security confirmed the exploit code is \u201cnot publicly available.\u201d The Department of Homeland Security warns potential hackers would need to be physically near their intended target. Additionally, the Department of Health promises only \u201can attacker with high skill would be able to exploit these vulnerabilities.\u201d<\/p>\n<p>Nevertheless, the potential for real harm exists, especially because the flaw in the device\u2019s software would allow a third party to slow or stop the device. Even though the possibility of of injury or death remains remote, influencing the speed or power on a pacemaker could result in life-threatening injury, thus spurring the FDA\u2019s recall action.<\/p>\n<p>\u201cThese vulnerabilities, if exploited, could allow an unauthorized user (i.e., someone other than the patient\u2019s physician) to access a patient\u2019s device using commercially available equipment. This access could be used to modify programming commands to the implanted pacemaker, which could result in patient harm from rapid battery depletion or administration of inappropriate pacing,\u201d the FDA warned.<\/p>\n<p><strong>Software Solution<\/strong><\/p>\n<p>The FDA estimates over 460,000 devices could be implicated, all of them either traditional pacemakers or cardiac resynchronization therapy pacemakers (CRT-P). The brands affected include Accent, Anthem, Accent MRI, Accent ST, Assurity and Allure. Implantable cardiac defibrillators (ICDs) and cardiac resynchronization ICDs (CRT-Ds) were not implicated in the possible hack.<\/p>\n<p>Thankfully, a firmware update designed to limit commands and prevent unencrypted transmission of patient information can be loaded onto the device. Using the Merlin PCS programmer, healthcare providers can upload the firmware update directly on to the implanted device, though the FDA suggests patients consider all the risks before making a decision.<\/p>\n<p>\u201cIt is recommended that healthcare providers discuss this update with their patients and carefully consider the potential risk of a cyber security attack along with the risk of performing a firmware update,\u201d counsels the FDA\u2019s recall notice. \u201cImplementation of the firmware update is to be determined based on the physician&#8217;s professional judgment and patient management considerations.\u201d<\/p>\n<p>Moving forward, all devices manufactured after August 28<sup>th<\/sup>, 2017 will operate on the updated software. In the meantime, both a hotline (1-800-722-3774) and <a href=\"https:\/\/www.sjm.com\/cyberupdate\" target=\"_blank\" rel=\"noopener\">website<\/a> are available to answer questions and address concerns.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>The FDA warns pacemaker patients about possible cyber security vulnerability.<\/p>\n","protected":false},"author":103,"featured_media":18660,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"_s2mail":"yes","_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[4,6],"tags":[1928,1564,76],"class_list":["post-18648","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news","category-technology","tag-cyber-security","tag-healthcare","tag-technology-2"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v23.4 (Yoast SEO v24.6) - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Yardi Blog<\/title>\n<meta name=\"description\" content=\"The FDA warns pacemaker patients about possible cyber security vulnerability.\" \/>\n<meta name=\"robots\" content=\"noindex, follow\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Pacemaker Panic\" \/>\n<meta property=\"og:description\" content=\"The FDA warns pacemaker patients about possible cyber security vulnerability.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.yardi.com\/blog\/pacemaker-panic\/\" \/>\n<meta property=\"og:site_name\" content=\"Yardi Blog\" \/>\n<meta property=\"article:published_time\" content=\"2017-10-06T12:00:27+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2020-12-25T06:33:12+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.yardi.com\/blog\/wp-content\/uploads\/sites\/15\/2017\/08\/shutterstock_519010477.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1000\" \/>\n\t<meta property=\"og:image:height\" content=\"667\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Cutright Elizabeth\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Cutright Elizabeth\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.yardi.com\/blog\/pacemaker-panic\/\",\"url\":\"https:\/\/www.yardi.com\/blog\/pacemaker-panic\/\",\"name\":\"Pacemaker Panic - Yardi Corporate Blog\",\"isPartOf\":{\"@id\":\"https:\/\/www.yardi.com\/blog\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.yardi.com\/blog\/pacemaker-panic\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.yardi.com\/blog\/pacemaker-panic\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.yardi.com\/blog\/wp-content\/uploads\/sites\/15\/2017\/08\/shutterstock_519010477.jpg\",\"datePublished\":\"2017-10-06T12:00:27+00:00\",\"dateModified\":\"2020-12-25T06:33:12+00:00\",\"author\":{\"@id\":\"https:\/\/www.yardi.com\/blog\/#\/schema\/person\/dba832121806bbec3d280d6cdde90b4d\"},\"description\":\"The FDA warns pacemaker patients about possible cyber security vulnerability.\",\"breadcrumb\":{\"@id\":\"https:\/\/www.yardi.com\/blog\/pacemaker-panic\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.yardi.com\/blog\/pacemaker-panic\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.yardi.com\/blog\/pacemaker-panic\/#primaryimage\",\"url\":\"https:\/\/www.yardi.com\/blog\/wp-content\/uploads\/sites\/15\/2017\/08\/shutterstock_519010477.jpg\",\"contentUrl\":\"https:\/\/www.yardi.com\/blog\/wp-content\/uploads\/sites\/15\/2017\/08\/shutterstock_519010477.jpg\",\"width\":1000,\"height\":667},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.yardi.com\/blog\/pacemaker-panic\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.yardi.com\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Pacemaker Panic\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.yardi.com\/blog\/#website\",\"url\":\"https:\/\/www.yardi.com\/blog\/\",\"name\":\"Yardi Blog\",\"description\":\"\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.yardi.com\/blog\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.yardi.com\/blog\/#\/schema\/person\/dba832121806bbec3d280d6cdde90b4d\",\"name\":\"Cutright Elizabeth\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.yardi.com\/blog\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/4016b5eabd512619820fc63946d01cd983acc211f98fbc559a890a5b4b27c559?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/4016b5eabd512619820fc63946d01cd983acc211f98fbc559a890a5b4b27c559?s=96&d=mm&r=g\",\"caption\":\"Cutright Elizabeth\"},\"description\":\"Elizabeth Cutright is an award-winning writer and editor with over 20 years of experience in journalism, publishing and online content creation. A film school grad with a law degree from the University of San Diego, outside of work Elizabeth can usually be found in the pool, on a hiking trail, or sampling Santa Barbara\u2019s latest vintage.\",\"url\":\"https:\/\/www.yardi.com\/blog\/author\/elizabeth-cutright-2\/\"}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Yardi Blog","description":"The FDA warns pacemaker patients about possible cyber security vulnerability.","robots":{"index":"noindex","follow":"follow"},"og_locale":"en_US","og_type":"article","og_title":"Pacemaker Panic","og_description":"The FDA warns pacemaker patients about possible cyber security vulnerability.","og_url":"https:\/\/www.yardi.com\/blog\/pacemaker-panic\/","og_site_name":"Yardi Blog","article_published_time":"2017-10-06T12:00:27+00:00","article_modified_time":"2020-12-25T06:33:12+00:00","og_image":[{"width":1000,"height":667,"url":"https:\/\/www.yardi.com\/blog\/wp-content\/uploads\/sites\/15\/2017\/08\/shutterstock_519010477.jpg","type":"image\/jpeg"}],"author":"Cutright Elizabeth","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Cutright Elizabeth","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/www.yardi.com\/blog\/pacemaker-panic\/","url":"https:\/\/www.yardi.com\/blog\/pacemaker-panic\/","name":"Pacemaker Panic - Yardi Corporate Blog","isPartOf":{"@id":"https:\/\/www.yardi.com\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.yardi.com\/blog\/pacemaker-panic\/#primaryimage"},"image":{"@id":"https:\/\/www.yardi.com\/blog\/pacemaker-panic\/#primaryimage"},"thumbnailUrl":"https:\/\/www.yardi.com\/blog\/wp-content\/uploads\/sites\/15\/2017\/08\/shutterstock_519010477.jpg","datePublished":"2017-10-06T12:00:27+00:00","dateModified":"2020-12-25T06:33:12+00:00","author":{"@id":"https:\/\/www.yardi.com\/blog\/#\/schema\/person\/dba832121806bbec3d280d6cdde90b4d"},"description":"The FDA warns pacemaker patients about possible cyber security vulnerability.","breadcrumb":{"@id":"https:\/\/www.yardi.com\/blog\/pacemaker-panic\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.yardi.com\/blog\/pacemaker-panic\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.yardi.com\/blog\/pacemaker-panic\/#primaryimage","url":"https:\/\/www.yardi.com\/blog\/wp-content\/uploads\/sites\/15\/2017\/08\/shutterstock_519010477.jpg","contentUrl":"https:\/\/www.yardi.com\/blog\/wp-content\/uploads\/sites\/15\/2017\/08\/shutterstock_519010477.jpg","width":1000,"height":667},{"@type":"BreadcrumbList","@id":"https:\/\/www.yardi.com\/blog\/pacemaker-panic\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.yardi.com\/blog\/"},{"@type":"ListItem","position":2,"name":"Pacemaker Panic"}]},{"@type":"WebSite","@id":"https:\/\/www.yardi.com\/blog\/#website","url":"https:\/\/www.yardi.com\/blog\/","name":"Yardi Blog","description":"","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.yardi.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/www.yardi.com\/blog\/#\/schema\/person\/dba832121806bbec3d280d6cdde90b4d","name":"Cutright Elizabeth","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.yardi.com\/blog\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/4016b5eabd512619820fc63946d01cd983acc211f98fbc559a890a5b4b27c559?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/4016b5eabd512619820fc63946d01cd983acc211f98fbc559a890a5b4b27c559?s=96&d=mm&r=g","caption":"Cutright Elizabeth"},"description":"Elizabeth Cutright is an award-winning writer and editor with over 20 years of experience in journalism, publishing and online content creation. A film school grad with a law degree from the University of San Diego, outside of work Elizabeth can usually be found in the pool, on a hiking trail, or sampling Santa Barbara\u2019s latest vintage.","url":"https:\/\/www.yardi.com\/blog\/author\/elizabeth-cutright-2\/"}]}},"jetpack_featured_media_url":"https:\/\/www.yardi.com\/blog\/wp-content\/uploads\/sites\/15\/2017\/08\/shutterstock_519010477.jpg","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/www.yardi.com\/blog\/wp-json\/wp\/v2\/posts\/18648","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.yardi.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.yardi.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.yardi.com\/blog\/wp-json\/wp\/v2\/users\/103"}],"replies":[{"embeddable":true,"href":"https:\/\/www.yardi.com\/blog\/wp-json\/wp\/v2\/comments?post=18648"}],"version-history":[{"count":7,"href":"https:\/\/www.yardi.com\/blog\/wp-json\/wp\/v2\/posts\/18648\/revisions"}],"predecessor-version":[{"id":27781,"href":"https:\/\/www.yardi.com\/blog\/wp-json\/wp\/v2\/posts\/18648\/revisions\/27781"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.yardi.com\/blog\/wp-json\/wp\/v2\/media\/18660"}],"wp:attachment":[{"href":"https:\/\/www.yardi.com\/blog\/wp-json\/wp\/v2\/media?parent=18648"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.yardi.com\/blog\/wp-json\/wp\/v2\/categories?post=18648"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.yardi.com\/blog\/wp-json\/wp\/v2\/tags?post=18648"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}