Medical devices made by St. Jude Medical are at risk of attacks via SSH certificate reuse vulnerabilities and static credentials that can easily give hackers root access to key monitoring equipment. The company s CTO, Philip Ebeling, released statement: The allegations are absolutely untrue. There are several layers of security measures in place. We conduct security assessments on an ongoing basis and work with external experts with specifically Merline@Home and all our devices, he said. The U.S. Food and Drug Administration, which regulates medical devices, declined to comment.
Source: https://threatpost.com/pacemaker-hacking-fears-rise-with-critical-research-report/120174/