[ad_1]
Since pacemakers and insulin pumps ra mammography machines, ultrasound, and monitors, dizzying range of medical devices they have been found to have worrying security vulnerabilities. The latest addition to this lineup is the well-known infusion pump and dock, the B. Braun Infusomat Space Large Volume Pump and B. Braun SpaceStation, which can be manipulated by a specified hacker to give victims a double dose of medication.
Infusion pumps automate the delivery of medications and nutrients to patients ’bodies, usually from a bag of intravenous fluids. They are especially useful for delivering very small or nuanced doses of medication without errors, but this means that the bet is high when it causes problems. Between 2005 and 2009, for example, the FDA received 56,000 reports of “adverse events” related to infusion pumps, including “numerous injuries and deaths,” followed by the agency. crack about the safety of the infusion pump in 2010. As a result, products like the B. Braun Infusomat Space Large Volume Pump are highly blocked at the software level; it seems impossible to send orders directly to the devices. But researchers at security firm McAfee eventually found ways to overcome that hurdle.
“We threw in as many threads as we could and eventually found the worst case scenario,” says Steve Povolny, head of McAfee’s Advanced Threat Research team. “As an attacker, you couldn’t move from SpaceStation to a real pump operating system, so breaking that security barrier and gaining access to interact between the two is a real problem. We showed that we could double the flow rate.”
Researchers have found that an attacker with access to a network of health facilities can take control of SpaceStation by exploiting a common connectivity vulnerability. From then on, they can use four more mistakes to send a double order of medication. The whole attack is not easy to carry out in practice and requires the first step in the network of medical facilities.
“Proper exploitation of these vulnerabilities can jeopardize the security of Space or compactplus communication devices by a sophisticated attacker,” wrote B. Braun security alert to customers, “to increase the privileges of an attacker, to view sensitive information, to upload arbitrary files, and to execute remote code execution.” The company also admitted that a hacker can change the configuration of the connected infusion pump, along with the speed of the infusions.
The company said in a statement that using the latest versions of the software released in October is the best way to keep devices safe. Customers have also been advised to implement other mitigations to improve network security, such as segmentation and multi-factor authentication. Researchers at McAfee have warned, however, that most flaws are not fixed in real products. B Braun, in their new version of SpaceStations has simply removed the weak network feature.
When hackers gain control of SpaceStation by exploiting the first network error, the hack is played by combining four vulnerabilities, all of which are related to the lack of access control between SpaceStation and a pump. Researchers have found specific commands and conditions that the pumps do not properly verify data integrity or authenticate commands sent from SpaceStation. They also downloaded that the lack of charging restrictions allowed the backup of the device to be infected with a malicious file and then restored from the backup to take the malware to the pump. And it was noticed that the devices send some data back and forth in plain text without encryption, explaining it to capture or manipulation.
[ad_2]
Source link
