Department of Homeland Security has issued an emergency alert warning of critical flaws allowing attackers to tamper with several Medtronic medical devices, including defibrillators and home patient monitoring systems. The two vulnerabilities comprised of a medium and critical-severity flaw exist in 20 products made by the popular medical device manufacturer. An update is not yet available for fixing these flaws, but updates will not be ready until later in 2019. The vulnerabilities stem from the Conexus telemetry protocol, which does not implement authentication, authorization or encryption for communication.
Source: https://threatpost.com/medtronic-defibrillators-have-critical-flaws-warns-dhs/143068/