Ransomware Expected To Hit 'Lifesaving' Medical Devices In 2016 (forrester.com)

← Back to Stories (view on slashdot.org)

Ransomware Expected To Hit 'Lifesaving' Medical Devices In 2016 (forrester.com)

Posted by Soulskill on Monday November 23, 2015 @02:37AM from the whatever-can-be-hacked-will-be-hacked dept.

An anonymous reader writes: A surge in ransomware campaigns is expected to hit the medical sector in 2016, according to a recent report published by forecasters at Forrester Research. The paper 'Predictions 2016: Cybersecuirty Swings To Prevention' suggests that the primary hacking trend of the coming year will be "ransomware for a medical device or wearable," arguing that cybercriminals would only have to make mall modifications to current malware to create a feasible attack. Pacemakers and other vital health devices would become prime targets, with attackers toying with their stability and potentially threatening the victim with their own life should the ransom demands not be met.

6 of 108 comments (clear)

Min score:

Reason:

Sort:

I'm careful about using the term "Evil" by unimacs · 2015-11-23 02:43 · Score: 4, Insightful

But that would qualify.
"Mall modifications"? by Anonymous Coward · 2015-11-23 02:45 · Score: 4, Funny

I suppose it's inevitable that these devices would become a Target at some point. Security is a Hot Topic these days. Sak's to be a victim.
Also, Walmart.
Re:Smells like FUD by gstoddart · 2015-11-23 02:49 · Score: 4, Interesting

Easily automated from anywhere in the world, hard to trace, and exploiting utterly useless security.
Honestly, this was pretty much inevitable.
The security of most consumer devices is pathetic and useless. The security of medical devices has known to be almost non-existent for years now.
Humans are not intrinsically honest. It's time to stop pretending they are.

--
Lost at C:>. Found at C.
DJ Kardio and the Beatskippers by Pseudonymous+Powers · 2015-11-23 02:51 · Score: 5, Insightful

How about we don't put a network chip on a pacemaker, dumbasses.
Why would you ever need to communicate with it? Is there ever a time when you want your heart not to beat?
1. Re:DJ Kardio and the Beatskippers by cdrudge · 2015-11-23 02:57 · Score: 4, Informative
  
  Communication with an implant isn't uncommon. Diagnostics, monitoring, tweaking for optimal operation, etc. It's a lot easier to do checkups and make adjustments on a person when you don't need to open up the chest cavity.
2. Re:DJ Kardio and the Beatskippers by tibit · 2015-11-23 03:55 · Score: 4, Interesting
  
  How about we don't put a network chip on a pacemaker, dumbasses.
  How about you don't take stupid fear-mongering from an inept "journalist" at face value? Pacemakers don't have a "network" chip or anything like that. They have a near-field communications system that can communicate with dedicated programming/data capture terminal. It makes little sense for any kind of ransomware on what amounts to a mostly offline device, where the owner doesn't have any means of accessing the data link or exposing it as an on-line node.
  
  --
  A successful API design takes a mixture of software design and pedagogy.