Omar Ishrak, chief executive officer of Medtronic Inc., speaks during an event at the 2016 Consumer Electronics Show (CES) in Las Vegas, Nevada, on Wednesday, Jan. 6, 2016.
David Paul Morris | Bloomberg | Getty Images
Medtronic is recalling some models of insulin pumps that are open to hacks, and the Food and Drug Administration warned consumers on Thursday that they cannot be patched to fix the holes.
It’s a rare example of a medical device recall over a cybersecurity issue, although security professionals and the FDA have raised numerous concerns over the vulnerability of these devices for years.
The insulin pumps subject to the recall connect wirelessly to other insulin equipment, including glucose meters, a monitoring system and controls that pump insulin.
“The FDA is concerned that, due to cybersecurity vulnerabilities identified in the device, someone other than a patient, caregiver or health care provider could potentially connect wirelessly to a nearby MiniMed insulin pump and change the pump’s settings. This could allow a person to over deliver insulin to a patient, leading to low blood sugar … or to stop insulin delivery, leading to high blood sugar and diabetic…