Experts The cybersecurity of medical wearables leaves a lot to

Experts: The cybersecurity of medical wearables leaves a lot to be desired

Many sphygmomanometers, heart monitors, and other medical devices that use a network connection to remotely monitor patients are vulnerable to intruder attacks. About it testifies Research conducted by Kaspersky Lab.

Image Source: mcmurryjulie /

Image Source: mcmurryjulie /

According to experts, the main problem of these devices is the vulnerable MQTT protocol (Message Queuing Telemetry Transport), which is designed to work with telemetry from various sensors and sensors. In 2021 alone, 33 defects were discovered in it, 18 of which are critical. Those are 10 dangerous vulnerabilities from more than a year ago, and many of them are still unpatched. In total, since 2014, about a hundred vulnerabilities related to ensuring privacy protection have been identified in MQTT, and this indicator is of great importance to information security professionals.

The MQTT protocol is not only used in medicine, but in almost all smart gadgets. At the same time, it does not require authentication and rarely involves encryption, making it vulnerable to man-in-the-middle attacks and traffic interception by intruders. Thus, all data transmitted by devices can be intercepted, including highly confidential medical, personal and even information about a person’s movements. According to Kaspersky Lab analysts, this issue is extremely relevant, especially given the rapid development of telemedicine.

“The pandemic has led to a sharp increase in the telemedicine market. It’s not just the ability to consult a doctor via video connection, but a whole range of complex, rapidly evolving technologies and products, including specialized applications, wearable devices and cloud-based databases. However, many hospitals still use poorly tested services to store patient data. In addition, many vulnerabilities in wearable medical devices and sensors remain unpatched. We remind you that before using such devices, you should learn as much as possible about their security level in order to prevent theft or disclosure of corporate and patient data. – say experts from Kaspersky Lab.


About the author

Johnson Smith

Johnson Smith is interested in Home Theater & Audio, Smart Tech, Google News & Products, How To, Apple News & Products, Cell Phones, Automotive Technology.

Add Comment

Click here to post a comment