Technology – Page 3 – Casserly Consulting

From Heart Attack to Hack Attack: Hackers Can Now Control Pacemakers

Medical technology has allowed for vast improvements in the way that conditions are treated. For example, the pacemaker allows some people with heart conditions to live longer and more comfortably. However, a European research team has concluded that even pacemakers are susceptible to being hacked, with deadly results.

The researchers made a note to describe the dangers of using implantable cardioverter defibrillators, from a hacking standpoint. Many modern pacemakers have the ability to communicate with other devices. While this capability is designed as a benefit to the patient, allowing the devices to be examined without an invasive surgical procedure, it can have dire consequences if hacked. If the patient is away from the doctor’s office within two hours, the pacemaker can still receive signals from other devices, thus making it vulnerable to a cyber attack.

Hackers can send a signal to the pacemaker that keeps the device from returning to “sleep mode,” which is what makes it vulnerable to exploitation. By analyzing the signals sent to the tested devices, researchers could spot various ways that a hacker would use this exploit. The results varied from draining the battery’s life to stealing personal data that may be stored on it. In other words, the hacker can make the patient’s life rather difficult by either turning off the device, or stealing data and using it to steal their identity. Hackers could even activate the pacemaker’s resuscitation shock without need, jolting the heart and making things difficult for the victim.

There are at least 10 different types of lifesaving devices that are vulnerable to this simple exploit. In fact, the hacker doesn’t necessarily need to know anything about the device itself. The reason why these devices are so vulnerable is thanks to the manufacturers not believing that pacemakers are clear targets of cybercriminals. This led them to release the devices without the IT security necessary to prevent these targeted attacks. The lesson learned: “Nobody will consider pacemakers a target,” is no excuse to use lackluster security.

Keep in mind that this study was conducted by researchers, rather than hackers. Still, have you ever considered the fact that your organization could be at serious risk? Some SMBs are under the impression that their small size means that they aren’t a target. However, most hacking incidents aren’t targeted events, and are instead massive campaigns meant to infect anything and anyone who happens to click on the wrong link. Furthermore, all businesses have some data that’s worth stealing, like employee records and financial credentials, and it needs to be protected properly.

If you want to maximize your company’s security, give COMPANYNAME a call at PHONENUMBER.

Why FitBit’s Purchase of Pebble Matters to Businesses

Smartwatch enthusiasts now have one less brand from which to select, as rival Fitbit has successfully taken over the former Kickstarter project Pebble’s business. For companies that rely on software for their mission-critical tasks, lessons learned from the end of Pebble reminds business owners that, when it comes to innovative technology purchases, there is always a bit of risk.

First, some background: Pebble made the announcement on its Kickstarter page that “due to various factors,” the company “could no longer operate as an independent entity” and had “made the tough decision to shut down the company” after Fitbit completed the purchase of some of Pebble’s assets. The company went on to disclose that they would no longer be continuing any hardware operations, ceasing the production of their wearable products.

As for the devices that had already been sold, Pebble advised their customers that their devices “will work normally for now.” However, since what remains of the company will no longer release software updates, the devices will quickly become vulnerable to malicious threats until they gradually become totally obsolete. These devices are also no longer eligible to be returned or exchanged, leaving their users stuck with a device with a considerably-shortened shelf life, and with no financial recompense.

In short, it’s clear that out of all parties affected by this buyout, it’s the users who are left with the short end of the stick; stuck with insecure electronic devices that they may have contributed a significant financial investment towards, and without warranty.

While this transaction will likely have little effect on a business, it’s worth considering the ramifications of tech companies engaging in similar deals.

For example, let’s say your workplace is exclusively equipped with desktop solutions from Company A. One day, it’s suddenly announced that Company B has come in and bought Company A, and is ending support for Company A’s products. As a result, your office is now filled with unsupported devices that will become obsolete much quicker than anticipated, with an increased susceptibility to security threats after support has ended. Sure, you could update your workstations, but it would be costly to receive customized support.

If you want to be protected against the whims of the tech industry, give COMPANYNAME a call at PHONENUMBER. We can keep your systems maintained with a managed services solution, and an eye on the industry to help you roll a bit better with the punches.