CISA warns of Medtronic cardiac device security vulnerability

Medtronic has reported a cyber breach of its Paceart Optima System, which manages patients’ cardiac device data. The vulnerability lies in an optional messaging feature. The Cybersecurity and Infrastructure Security Agency (CISA) has suggested taking control system devices offline and using secure VPNs, and urged health organizations to work with Medtronic to install an update to eliminate the vulnerability. Cyber attacks can potentially affect patient safety and data confidentiality.