FDA issues new security guidelines so that your pacemaker won’t get hacked


This week, the US Food and Drug Administration issued a set of recommendations for securing medical devices that could jeopardize the safety and privacy of their users. The report, titled “Postmarket Management of Cybersecurity in Medical Devices,” focuses on security throughout the lifecycle of a device, emphasizing that robust cybersecurity is an ongoing process that requires maintenance and regular software updates, just like any non-medical piece of hardware would.

Falling short of formal regulation, the methods contained in the report are classified as “nonbinding recommendations,” a gentle term indicating that hey, these are just friendly suggestions, do whatever you want with them.

In an accompanying blog post, Dr. Suzanne B. Schwartz, associate director for…

Read Story