Keeping Pacemakers Safe From Hackers 167
An anonymous reader writes "Researchers from the Swiss Federal Institute of Technology in Zurich and the French National Institute for Research in Computer Science and Control have now developed a scheme for protecting implantable medical devices against wireless attacks. The approach relies on using ultrasound waves to determine the exact distance between a medical device and the wireless reader attempting to communicate with it." I had no idea that things have gotten so bad that hearts are being hacked.
Hacking hearts (Score:5, Funny)
If I could hack her heart, she'd really love me...
Re:Hacking hearts (Score:4, Funny)
That's not love, it's angina.
Re:Hacking hearts (Score:4, Funny)
You keep your filthy talk to yourself, mister!
Re:Hacking hearts (Score:5, Funny)
You keep your filthy talk to yourself, mister!
Hey, now, that's unfair. I know Angina, she's a talented thespian with a very fine epidermis.
Re:Hacking hearts (Score:4, Funny)
Hey, now, that's unfair. I know Angina, she's a talented thespian with a very fine epidermis.
What does her sexual orientation have to do with anything? You homophobic or something?
*Sigh* (Score:2)
Way to miss the joke, moderators. Jayme was just playing along.
Re: (Score:2, Insightful)
Re: (Score:2)
You're right, it's a lame joke taken out of context. Hell, taken within context, it's a lame joke. Even so, it definitely was NOT flamebait.
Let's take a look at what flamebait is, shall we? As defined by some random guy on the internet, [wikipedia.org] flamebait is a message deliberately crafted in order to provoke an angry flame as a response.
Clearly, that's not the case. I was following the down the line of jokes that were made based on "misunderstanding" words to have definitions of similar sounding words, not to attack
Re: (Score:2)
Right? I mean, either the joke was funny or it wasn't. If it wasn't, go ahead and mod the whole thread down or just ignore it. But most of the thread got modded up quickly, so for our AC friend to claim it wasn't funny flies in the face of all evidence.
IMHO, people recognizing the point of the joke (look, we're stupid! We misinterpret naughty sounding words!) and playing along is what makes it funny. Out of context, it's pretty dumb grade school humor, but then again, a lot of nerd humor is. But the theme b
Re:Hacking hearts (Score:4, Funny)
I think I've seen her.. there's a vas deferens between her left and right legs, right?
Re: (Score:2)
Re: (Score:2)
But she doesn't even know you exist, so you're stuck with mastication.
Re:Hacking hearts (Score:4, Funny)
Can we mention cunning linguist in there somewhere?
I don't need to stoop that low, as I am a master debater.
Re: (Score:2)
Just shut up and hand me my tit sling
Re: (Score:2)
Fine, just don't masticate with your mouth open ...
Re: (Score:2)
Re: (Score:2)
Hmm... either a very nerdy joke, or a the motivation of a serial killer...
Re: (Score:3, Funny)
Re: (Score:2, Insightful)
If you attacked a pacemaker, they'd wind up pretty heartless as well.
Re: (Score:2)
But if you meant a Colt Peacemaker, can't be done, and I have total control of mine!
Oblig (Score:5, Funny)
I could if I tried
Honey please forget my wireless
Baby I'm not that kind
Don't go hacking my heart
You take the beat out of me
Honey when you knocked on my port
My heart gave you my key
Nobody knows it
When I was down
I was your pawn
Nobody knows it
Right from the start
You stopped my heart
You stopped my heart
So don't go hacking my heart
I won't go hacking your heart
Don't go hacking my heart
On a slighly different note. I wonder if Captain Crunch could freak an ear implant?
Re: (Score:2)
I believe it's spelled "phreak".
There's something I don't get to say every day. =)
Re: (Score:2)
If I could hack her heart, she'd really love me...
Or Else!
This really puts a whole new twist on the phrase "kill switch"... I would have to learn to speak new phrases like "Yes, I AM just going to sit here."
No Locked Hardware! (Score:4, Funny)
Re:No Locked Hardware! (Score:5, Insightful)
If your life, health and well being depends on being able to tune the device, having DRMed firmware would suck pretty badly. If some doctor tunes the pacemaker to enable short burst higher rates so that, for example, I can climb a flight of stairs comfortably, I should have a right to install the update.
Re:No Locked Hardware! (Score:4, Insightful)
Re: (Score:2)
The medical profession frowns upon self medication for a reason.
The rest of us call it "Darwin in action"
Re: (Score:1)
Re: (Score:2)
Re: (Score:2)
So, to repair the engine in a car you wound normally go to a repair shop. However you may not want to go to the dealer and you want the repair shop to have access to and ability to reset diagnostic codes to identify and fix the problem. In the same way, I don't expect patients to normally have pacemaker programmers at home. However you should be able to see a licensed doctor not directly associated with the equipment manufacturer and have him/her update the firmware.
As for nutcases who buy a programmer on e
Re: (Score:2, Funny)
Re: (Score:2)
Some super glue is supposedly safe(ish) to use as well. I wouldn't trust the stuff you buy at the store though unless it was an emergency.
I think there is a form that is actually approved for medical use.
Re: (Score:2)
I would possibly be concerned about that since superglue isn't rated for much shear strength IIRC. Although the risk of causing more damage by having it redone professionally probably outweighed the benefits.
Re:No Locked Hardware! (Score:4, Insightful)
The medical profession frowns upon self medication for a reason.
Yeah, because they're missing out on the MONEY.
Old term new meaning: FATAL ERROR (Score:4, Interesting)
I have one. I get "tuneups" every six months. Pretty cool how they can change its settings with a wireless interface and a few taps of a touchscreen.
Last time I was in for a data dump on my pacemaker, my cardiologist excitedly explained "there are a _google_ combinations of settings on this device!" Then he paused, and grudgingly conceded most of them would kill me.
Even if allowed to replace implanted medical firmware, such hacking would be unpopular. We all know how reliable fixes, tweaks & updates to software are (i.e.: NOT). A single "oops" could leave the user unconscious in seconds and dead in minutes; even if not a terminal error, screwups can range anywhere from very uncomfortable to subtly distressing. During early diagnostic runs post-implantation, several times I found myself in a fetal position as a bug (!) caused repeated serious abdominal convulsions (didn't hurt, but did cause uncontrolled laughing in a "MTV Jackass" kinda way); nobody ever figured out why (technician: "did I do that?", me: "YEAH!!"). Later I found sleeping on my left side was undesirable, as natural abdominal compression caused diaphragm twitching with each pulse - harmless, but distressing enough to stop the practice (later resolved by reducing lead voltage and increasing pulse width, affecting battery life). When asked what the failure condition symptoms would be, my cardiac surgeon said simply "you'll pass out" (implying not waking up - ever).
Yes, the libertarian principles exist to demand patients have self-funded access to medical gear allowing reprogramming of implanted pacemakers or other medical devices. Absolutely I stand in support of such a notion. In practice, however, methinks this will be - shall we say - a self-correcting issue: those who do, and make mistakes, will die.
Re: (Score:2)
The number is spelled "googol." Just saying..
Unless he actually meant that the device allows you to control Google, which would also be cool.
Overclocking the pacemaker? (Score:2)
Usually results in a shortened lifespan of the pump.
Personally I'd rather just update to Neurons 2.0
Re: (Score:2)
I think the only significant benefit to having patient adjustable settings on a pacemaker would be if the patient is in an area that does not have the equipment necessary for making an adjustment and one is necessary. This could be done with encoded commands so the patient (or someone wanting to cause harm) can not mess with things, they would just have the equipment to make the changes.
Re:No Locked Hardware! (Score:4, Insightful)
Well, it's my life to risk and my informed decision to make. What if the bug which is killing me is in the original firmware?
emphasis on INFORMED (Score:2)
Well, it's my life to risk and my informed decision to make.
Which part of "informed" do you not understand?
Re: (Score:2)
I think dangers of a random person being able to change code that jolts your heart far outweighs the benefits
Not to mention that if you can change it, then so can your neighbor. I've never seen password encryption on these devices. Security in these devices basically exists through obscurity in that no one outside the company knows much detail about the communication protocol.
Re: (Score:2)
What if there is a 3rd party firmware that was developed in compliance will all of the regulations and has been as thoroughly tested as the original AND your doctor thinks it would be a good idea?
Perhaps the manufacturer has a new revision of the firmware running on the same hardware but only offers it on new implants? A firmware update would sure beat surgery.
Re: (Score:2)
Sorry... the risk that you brick your pacemaker is too great; I don't think anyone has a proper right to take such risks.
I do not care what rights you think I have to modify my body.
I did not want to get all political but seriously! This is the kind of thought that is ruining the entire planet. Everyone thinks that everyone needs to be protected from themselves. That their right to breed should be protected from their stupidity. WRONG. Pansy ass liberal thinkers.
Think of the children!
Pussies.
Re: (Score:2)
These kind of sentiments have been advanced by closed source vendors for ages - just listen to Apple and AT&T about how giving me access to iPhone is too dangerous for my own good. Yet two scenarios keep occurring - either manufacturer goes out of business or the software doesn't work for my specific need and I am not enough of a target market to bother fixing it. These cases and use of open source/user upgradability is MORE important for life critical applications. I can always buy a new cell phone, bu
Re: (Score:1, Funny)
No only should it be open, but there should be an app store for the pace maker. Think of all the exciting heart rhythms you could purchase.
Maybe they could integrate it to my media pc and home entertainment center!
Re: (Score:2)
Oh, who wants Microwave Pizza?
NOOOooooooo..... CARRIER
Hearts Being Hacked (Score:5, Insightful)
I had no idea that things have gotten so bad that hearts are being hacked.
Well the article talks about how the threats have been demonstrated in the lab by a fella named Kevin Fu, but it doesn't mention it being a major problem right now:
The potential risks of enabling radio communication in implantable medical devices were first highlighted by Kevin Fu, an assistant professor of computer science at the University of Massachusetts, Amherst, and Tadayoshi Kohno, an assistant professor of computer science at the University of Washington. They showed how to glean personal information from such a device, how to drain its batteries remotely, and how to make it malfunction in dangerous ways. The two researchers stress that the threat is minimal now, but argue that it is vital to find ways to protect wireless medical devices before malicious users discover and exploit vulnerabilities.
So this defense seems primarily like foresight rather than a hindsight, "Shit fixitfixitfixtfixit!" moment...So in response to your pondering, I don't think too many hearts are being hacked right now, nor that things have gotten that bad. Rather, it just seems like two security researchers are doing their job to keep the defensive actions one step ahead of offensive actions...
Re:Hearts Being Hacked (Score:5, Insightful)
Guess which website I'll be visiting tonight?
Re: (Score:2)
What kind of spinal implant could or would you turn on and off?
Re: (Score:2)
Nevermind, I just saw you post further down.
Re: (Score:1)
He made an excellent topic choice.
On the other hand, it does look he'd be happy as a baker [umass.edu].
Re: (Score:3, Funny)
the threats have been demonstrated in the lab by a fella named Kevin Fu
FFFFFFFFFFFFFFFFFFFFFFUUUUUUUUUUUUUUUUUUUU...........
Re: (Score:2)
He works in the lab ARRRRRR RRRGGG........
(I'm trying to not use so many caps, because it's like yelling, but I'm failing.)
Re: (Score:2)
Rather, it just seems like two security researchers are doing their job to keep the defensive actions one step ahead of offensive actions...
Weird..
Re: (Score:2)
Re:Hearts Being Hacked (Score:5, Insightful)
To take control and use that for various purposes, like money making or DoS? Not really meaningful.
You're still thinking in a "people playing with computer networks" category.
Criminals could use it for extortion.
Criminal gangs and governments could use it for murder / assassination of high-value targets.
Terrorists ditto and they could also use killing or disrupting the health of random people or groups of them as a terror tactic.
Remember the gadget that sent out the infrared "turn off" code for a bunch of different makes of TVs and monitors? And how much fun some people had wandering around trade shows with it? Now imagine a radio key-fob that sends "cause fibrillation" to pacemakers, in the pocket of your friendly neighborhood terrorist as he walks or drives around the city (or just sends the signal occasionally via a BIG transmitter.)
Re: (Score:2)
Well, if they start with Dick Cheney, I think a lot of people will give them the benefit of the doubt on that one
Re: (Score:2)
Personally, if I were designing a pacemaker, I'd leave the "cause fibrillation" command out of the final version.
Re: (Score:2, Insightful)
I guess the fear is not about hackers trying to be assholes, but actually planned murder using the pacemaker as "weapon". Indeed, if the attacker can change the pacemaker to operate normally again afterwards, it might actually be the perfect murder.
Re: (Score:2)
"It's not very often that hackers (by definition, intelligent people) do something purely and solely for the reason of being an asshole."
If you mean "hackers" as the word is commonly used today, no, they are not particularly intelligent.
In fact, you could probably make a case that the original hackers weren't necessarily brilliant either - just highly focused on a narrow knowledge domain.
Heard a 'calibration' process (Score:2, Interesting)
Coworker had a pacemaker put in. Said she held on to two connectors and they could change the rate by sending signals through one arm, through the pacemaker to the receiver in the other.
I joked with the tone generator (for phone equipment) with other employees, but not with her.
From someone with an implant.. (Score:4, Interesting)
As much as it's not life-threatening in my case, it's still pretty damn scary. I can't imagine having a pacemaker that could be disrupted remotely. Although talk about a great tool for the CIA for remote-kills.
Re: (Score:3, Informative)
I'm not a doctor, but I've been watching Glenn Beck, and here's what I think he'd have to say:
Why bother fixing it? They're just going to implant tiny remote-controlled exploding devices in the chest cavities of all citizens once the Socialist "healthcare" program takes effect. Come on, people, WAKE UP!!! I mean.... *guffaw*...... *rolls eyes*..... Whore!! I'm not saying *you* are a whore, but certainly we can all agree that whores want free healthcare, therefore people who want free healthcare are who
Re: (Score:2)
Perhaps Glenn's brain is being controlled by a wireless device. It would explain a lot.
Re: (Score:2)
No, that just pushes the question one level out. It may explain how Glenn Beck is so fuckall insane, but it still doesn't explain his controllers.
Re: (Score:2)
Only if a box of kittens are playing with the remote...
Re: (Score:2)
I have an insulin pump [animascorp.com] with has a wireless connection to a handheld BG monitor that has some extra features. The selling point is that you can test your BG levels, select some foods from the database in the handheld device, and give yourself a perfectly adjusted insulin dose without having to pull out a pump and mess with it. (They make the handheld look somewhat like a cell phone with the idea that you can conceal the fact that you are using an insulin pump.) Having found these features to be no
Re: (Score:2)
Ugh... I can't help it:
If you told the thing to give me even an extra 1 ml dose
I think you probably meant 1 IU (1 unit). 1 ml (100 IU) would wipe out most horses.
True, some may think I'm nitpicking, but I figure I'll get slack because I've had Type 1 for 21 years myself. Not on a pump yet, though... psychological factors mean I'm really not happy about the idea of being attached to a permanent infusion pump. And I work at a hospital too, so pumps aren't exactly an alien thing!
People are funny, eh? :>
Re: (Score:2)
I think you probably meant 1 IU (1 unit). 1 ml (100 IU) would wipe out most horses.
Pedantry fully excused.
I figured the average Slashdot reader would not be familiar with "IU" as a measure of insulin, so I did intend to use 1 ml = 100 IU... though 0.1 ml = 10 IU would probably have the same effect. I *hope* that a pump would be hardwired to not ever dispense 100 IU at once, but your average pump cartridge holds 200-300 IU, so if a hacker or bug managed to flush the thing, you would get the same result. Besides, just 1 IU would cause the onset of hypoglycemia to be gradual enough th
Re: (Score:2)
I can see it now... (Score:5, Funny)
Oh I can see it too... (Score:2)
And some bad metal band will actually write a song called "overclock my heart". I can see the tributes to Motley Crue now...
Re:I can see it now... (Score:5, Informative)
Someday, some geek will try to overclock his artificial heart...
Heck people overclock their normal hearts today anyway. It's called cocaine...
I've actually seen someone with a cocaine induced [bmj.com] long QT syndrome [wikipedia.org]. A hairy day in the ER that was, considering he was psychotic at the time... it took quite a few of us to hold him still enough to get the IV going.
Re: (Score:2)
Someday, some geek will try to overclock his artificial heart...
He'll be following in the footsteps of the ones that already have, like coke and meth junkies.
Re: (Score:2)
My first thought when I read this was 4chan:
"Hay guize, I found the passwordz to grammas heart. RAEDZ!"
Re: (Score:2, Funny)
Most mammals have an inverse relationship between rate and lifetime. (And barring the use of medicine, probably humans too.) Almost as if there were a limited number of beats allocated...
And then you die from a null pointer exception?
Re: (Score:2, Interesting)
Is it too much to ask that such a critical device have two firmwares, the 'user installed firmware', a 'backup firmware', and a monitor ROM?
If the monitor ROM detects the device going out of certain parameters, or detects an exception in the user firmware, it switches to an emergency firmware ROM with assured "safe settings", and starts emitting a radio signal to be picked up by authorities, and possibly alarm tone to warn the user..
Re: (Score:2)
That's how some advanced autopilots work now. The program that has final control of the plane will not let it enter into an unsafe situation. It can keep the plane level and safe. A second system can only tell the first what it wants. That's the one that gets frequent updates, maximizes fuel economy, etc. The worst case failure is that the primary shoots it in the head and alerts the pilot to the failure.
Does someone have him for a class. (Score:2, Funny)
The potential risks of enabling radio communication in implantable medical devices were first highlighted by Kevin Fu, an assistant professor of computer science at the University of Massachusetts, Amherst,...
It must have been rough in college for him.
CS Professor: Now when you call function Foo.
Fu: What professor?
Um, nothing. Back to Foo.
Sir?
Nothing. Anyway the function, let's call it, "Bar" instead. Now when you call "Bar"
John Barr, another student: "What sir?
Professor: Is there anyone named ABC?! Good! Now when you call function ABC ...
Wireless Attacks? (Score:2)
Like bullets? Or would only a throwing ax count as hacking?
Let's research how to defeat this anyway! (Score:1)
The same kind of people [slashdot.org], who'd seek to learn, how to DoS a police wire-tap — and publish their "research" for all, could try to see, how to defeat this scheme too. And with the same justifications and excuses:
Somehow, I don't think, they'll be as well accepted as those other guys are
Re: (Score:1)
Even if the wearer is the worst scumbag on earth, killing him certainly isn't the right thing.
Re: (Score:2)
I am afraid I have to disagree with you.
The article is about the fact that those advanced life supporting technological implements are possibly inherently unsafe if they both allow remote manipulation *and* are not properly authenticated. There is no discussion about any motive at this point.
The other subject (wiretaps) is highly more controversial because current governmental wire-taping policies in the U.S. are not necessarily backed by the judicial system but are basically carried out by executive orders
Re: (Score:2)
You aren't really disagreeing...
Actually, actively fighting a government's law-enforcement effort is no mere "disobedience". But that's hair-splitting. But you missed the other — wouldn't it be comparably legitimate to try to punish a scumbag (such as a "pig") with the pain and discomfort of malfunctioning pacemaker? Certainly, inquiring minds need to know, and the researchers the
No reports? (Score:2)
I haven't heard any reports of people having them hacked. We had an internet-connected pacemaker [slashdot.org], and reports that they could be hacked [slashdot.org].
I had always assumed that there was a limited range that the interface device could be used with my pacemaker. Perhaps this will be incorporated next time I go in for a battery change.
An EMP would still be more effective as an attack though.
Winning the hearts and minds (Score:3, Funny)
The romantic possibilities (Score:1, Redundant)
*Now* I know how to get her heart racing whenever she sees me.
Or is that too hard hearted of me?
One of the nicest complements I ever got ... (Score:2)
... was when a colleague (in a discussion on software quality) said I was the only person he'd trust to program his pacemaker.
Looks like the "web of trust" is getting spun a bit wide these days.
63 comments and still.. (Score:5, Funny)
This gives a whole new meaning to heart attack.
Someone had to say it.
Just ask my dad (Score:4, Interesting)
My dad got a defibrillator fitted a year back. It has bluetooth and 5mb of memory. I didn't want to connect to it since killing a parent at Christmas would probably sour the mood.
3 months ago he got it updated and was ill for 4 weeks until a new patch came(although I suspect he milked it a bit for attention). Apparently an overflow in the software was causing small discharges! We don't need to protect against hackers, protecting against the programmers would be a good start. At least I can go around and say that my doctor flashed my dad. :D ..AC because I don't want my family medical history on the net.
How to Hack a Heart (Score:2)
Step 1) Take a large, sharp knife.
Step 2) Insert forcefully into sternum
Step 3) ?
Step 4) Profit.
Why wireless? (Score:2)
Would it be too much to ask that these things not communicate wirelessly? It seems to me that this just unnecessarily multiplies the threat. (Everyone here should remember the shit storm over RFID passports). They really should use a contact based communication system in such a critical application like this. I suggest the transmitter use a small solenoid to tap (like Morse code) on a sensing plate glued to a rib.
Re: (Score:2)
I wonder how a pacemaker (wireless or not) would react to a HERF [wikipedia.org] gun. There are a lot of other threats than just someone reprogramming it.
At least it's a remote attack ... (Score:2)
Oh Thufir, I see they've installed your heart plug already.... Don't be angry. Everyone gets one here.
Hang on, didn't RSA get encryption going in ... (Score:2)
Re: (Score:2)
Too late
Re:And somewhere... (Score:5, Informative)
Who, oh, do you mean the draft dodging guy who smokes hashish and sleeps with hippie chicks while writing crazy ass cyberpunk drivel?
I'm quite sure he's referring to William Gibson [wikipedia.org], the Tony-Award-winning playwright and novelist who died last year at the age of 94, still writing. His best-known work is "The Miracle Worker," a true American stage classic.
Why anyone on Slashdot would refer to that other William Gibson is beyond me.
Re: (Score:2)
Be careful (Score:2)
Dick still has some interdiction contacts in the CIA.
Re: (Score:2)
The activation circuitry is usually passively powered. It is very unlikely somebody wouldn't notice somebody holding a programmer by their chest.
True enough. If you wander out on a hypothetical limb, though...
With all the recent R&D going into wireless power, wireless device charging, etc., and a couple of companies claiming things like 80 cm charging ranges - and this for a consumer device, which requires a lot more juice (most likely) than the passive implant activation circuitry - might it not be conceivable that at least this second point of your argument will eventually be worked around?
Scary thought, that. Modified wireless power equipment