KRACK Wi-Fi flaw puts medical devices at risk

Medical devices manufactured by Becton, Dickinson and Company are vulnerable to the KRACK bug, which could expose patient records, according to an alert from industrial control system cybersecurity firm ICS-CERT. The vulnerability affects versions of BD Pyxis, a medication and supply management system, and could allow all patient data to be intercepted over Wi-Fi. Although there have been no known instances of the vulnerability being exploited maliciously against medical devices, healthcare facilities could experience patient record changes and IT disruptions if it is successfully exploited.