“A security firm found a flaw in a brand of insulin pump systems that could allow a hacker to remotely administer a dose of insulin. Diabetics use insulin pumps to self-administer insulin and regulate blood sugar. The Animas OneTouch Ping systems include a meter that checks blood sugar and controls the pump through wireless communications. Security firm Rapid7 found the communications aren’t encrypted and someone could spoof the signal, allowing them to eavesdrop on the information or send a dose of insulin to the wearer. Rapid7 said an attacker could execute the attack within two kilometers of the device, and a U.S. Computer Emergency Readiness Team alert said the attacker would need a high-skill level.”
Source: Insulin Pump Vulnerability Lets Attackers Remotely Administer Dose – Nextgov.com
