The Defcon conference is the wild and woolly version of Black Hat for the unwashed masses of hackers. It always has its share of unusual hacks. The oddest so far is a collaborative academic effort where medical device security researchers have figured out how to turn off someone’s pacemaker via remote control. They previously disclosed the paper at a conference in May. But the larger point of the vulnerability of all wirelessly-controlled medical devices remains a hot topic here at the show in Las Vegas.
Let’s not have a collective heart attack, at least not yet. The people on the right side of the security fence are the ones who have figured this out so far. But this has very serious implications for the 2.6 million people who had pacemakers installed from 1990 to 2002 (the stats available from the researchers). It also presents product liability problems for the five companies that make pace makers.
Kevin Fu, an associate professor at the University of Massachusetts at Amherst and director of the Medical Device Security Center, said that his team and researchers at the University of Washington spent two years working on the challenge. Fu presented at Black Hat while Daniel Halperin, a graduate student at the University of Washington, presented today at Defcon.
Getting access to a pacemaker wasn’t easy. Fu’s team had to analyze and understand pacemakers for which there was no available documentation. Fu asked the medical device makers, explaining his cause fully, but didn’t get any help.
William H. Maisel, a doctor at Beth Israel Deaconess Hospital and Harvard Medical School, granted Fu access for the project. Fu received an old pacemaker as the doctor installed a new one in a patient. The team had to use complicated procedures to take apart the pacemaker and reverse engineer its processes. Halperin said that the devices have a built-in test mechanism which turns out to be a bug that can be exploited by hackers. There is no cryptographic key used to secure the wireless communication between the control device and the pacemaker.
A computer acts as a control mechanism for programming the pacemaker so that it can be set to deal with a patient’s particular defribrillation needs. Pacemakers administer small shocks to the heart to restore a regular heartbeat. The devices have the ability to induce a fatal shock to a heart.
Fu and Halperin said they used a cheap $1,000 system to mimic the control mechanism. It included a software radio, GNU radio software, and other electronics. They could use that to eavesdrop on private data such as the identity of the patient, the doctor, the diagnosis, and the pacemaker instructions. They figured out how to control the pacemaker with their device.
“You can induce the test mode, drain the device battery, and turn off therapies,” Halperin said.
Translation: you can kill the patient. Fu said that he didn’t try the attack on other brands of pacemakers because he just needed to prove the academic point. Halperin said, “This is something that academics can do now. We have to do something before the ability to mount attacks becomes easier.”
The disclosure at Defcon wasn’t particularly detailed, though the paper has all of the information on the hack. The crowd here is mostly male, young, with plenty of shaved heads, tattoos and long hair. The conference is a cash-only event where no pictures are allowed without consent. It draws thousands more people from a much wider net of security researchers and hackers than the more exclusive Black Hat.
Similar wireless control mechanisms are used for administering drugs to a patient or other medical devices. Clearly, the medical device companies have to start working on more secure devices. Other hackers have figured out how to induce epileptic seizures in people sensitive to light conditions. The longer I stay at the security conferences here in Las Vegas, the scarier it gets.
4:15 pm
Heart stopping hackers | Streaming Me said:
[...] up this morning in a post-Olympics opening ceremony fugue to a more-or-less terrifying story in VentureBeat about a presentation at DefCon by researchers that have found ways to remotely hack [...]
4:46 pm
Pacemaker-B-Gone| Zoli’s Blog said:
[...] in hindsight, that was just a benign trick, too. VentureBeat reports of a “collaborative academic effort where medical device security researchers have figured [...]
2:28 am
Pacemakers can be remotely pwned - taccato! trend tracker, cool hunting, new business ideas said:
[...] Defcon: Excuse me while I turn off your pacemaker [...]
2:48 am
Wear a pacemaker? Be nice to hackers ‘cos they can kill you. at Aral Balkan said:
[...] is crazy: According to VentureBeat, “medical device security researchers have figured out how to turn off someone’s pacemaker via [...]
3:01 am
News » Pacemakers can be remotely pwned said:
[...] Defcon: Excuse me while I turn off your pacemaker [...]
7:34 am
Pacemakers can be remotely pwned « Unleash your inner geek said:
[...] Defcon: Excuse me while I turn off your pacemaker [...]
3:24 pm
Pacemaker Now Hackable, Puts 3 Million people at risk or does it? || Technology Nerd said:
[...] more at Venturebeat. Tags: Hacker, Hacking, Pacemaker, Pacemaker [...]
4:44 pm
VFTQ 111 - Damn MSN idiots! | View From The Quad said:
[...] http://venturebeat.com/2008/08/08/defcon-excuse-me-while-i-turn-off-your-pacemaker/ - Hackers manage to disable Pacemakers remotely [...]
4:45 pm
Żyjemy w cyberpunku (13): mieć roota na twoim wetware. | szuflada said:
[...] z Defconu: można zahakować zdalnie rozrusznik serca (news, artykuł). To wyjaśnia, po co komu gniazdka w skórze: żeby się nie dało zdalnie zatrzymać [...]
4:15 pm
Techotic - Fu can remotely turns off your pacemaker said:
[...] venturebeat] Tags: cryptographic security, kevin fu, medical device makers Add to Favorite [...]
7:08 pm
Defcon duo: how-to shut off a pacemaker, nearly get free rides on the T | Gizmo Hacker said:
[...] Read - Pacemaker hackRead - Massachusetts Transit Authority sues MIT hackersRead - Restraining order on said hackers [...]
7:28 pm
Excuse me while I turn off your pacemaker - The Medical Quack .... by Barbara Duck - emrupdate.com said:
[...] Defcon: Excuse me while I turn off your pacemaker » VentureBeat [...]
7:32 pm
Defcon duo: how-to shut off a pacemaker, almost get free rides on the T at The Right Guy’s Blog said:
[...] Read - Pacemaker hackRead - Massachusetts Transit Authority sues MIT hackersRead - Restraining order on said hackers [...]
7:38 pm
Defcon duo: how-to shut off a pacemaker, almost get free rides on the T | Only- Electronics said:
[...] before the expo. Don’t lie, you’re intrigued — hit up the links below for all the nitty-gritty.Read - Pacemaker hackRead - Massachusetts Transit Authority sues MIT hackersRead - Restraining order on [...]
7:38 pm
B On The Move - Tech News » Blog Archive » Defcon duo: how-to shut off a pacemaker, almost get free rides on the T said:
[...] Read - Pacemaker hackRead - MTA dues MIT hackersRead - Restraining order [...]
7:38 pm
Defcon duo: how-to shut off a pacemaker, almost get free rides on the T : www.techtidbits.org said:
[...] before the expo. Don’t lie, you’re intrigued — hit up the links below for all the nitty-gritty.Read - Pacemaker hackRead - Massachusetts Transit Authority sues MIT hackersRead - Restraining order on [...]
7:39 pm
Defcon duo: how-to shut off a pacemaker, almost get free rides on the T | arnsteinblogg 2.0 said:
[...] before the expo. Don’t lie, you’re intrigued — hit up the links below for all the nitty-gritty.Read - Pacemaker hackRead - MTA dues MIT hackersRead - Restraining orderPermalink | Email [...]
7:39 pm
Defcon duo: how-to shut off a pacemaker, almost get free rides on the T at Electronics Review And Update said:
[...] before the expo. Don’t lie, you’re intrigued — hit up the links below for all the nitty-gritty.Read - Pacemaker hackRead - Massachusetts Transit Authority sues MIT hackersRead - Restraining order on [...]
7:40 pm
Tech News » Blog Archive » Defcon duo: how-to shut off a pacemaker, almost get free rides on the T said:
[...] before the expo. Don’t lie, you’re intrigued — hit up the links below for all the nitty-gritty.Read - Pacemaker hackRead - MTA dues MIT hackersRead - Restraining orderPermalink | Email [...]
7:41 pm
Latesht .com » Defcon duo: how-to shut off a pacemaker, almost get free rides on the T said:
[...] before the expo. Don’t lie, you’re intrigued — hit up the links below for all the nitty-gritty.Read - Pacemaker hackRead - MTA dues MIT hackersRead - Restraining orderPermalink | Email [...]
7:41 pm
Defcon duo: how-to shut off a pacemaker, almost get free rides on the T | Mystic Hackers said:
[...] before the expo. Don’t lie, you’re intrigued — hit up the links below for all the nitty-gritty.Read - Pacemaker hackRead - Massachusetts Transit Authority sues MIT hackersRead - Restraining order on [...]
7:42 pm
Defcon duo: how-to shut off a pacemaker, almost get free rides on the T | Technology Update News said:
[...] before the expo. Don’t lie, you’re intrigued — hit up the links below for all the nitty-gritty.Read - Pacemaker hackRead - MTA dues MIT hackersRead - Restraining orderPermalink | Email [...]
7:45 pm
Defcon duo: how-to shut off a pacemaker, almost get free rides on the T | PhetchIt - Only The Best of the Web. said:
[...] before the expo. Don’t lie, you’re intrigued — hit up the links below for all the nitty-gritty.Read - Pacemaker hackRead - Massachusetts Transit Authority sues MIT hackersRead - Restraining order on [...]
7:46 pm
Would be Cool » Blog Archive » Defcon duo: how-to shut off a pacemaker, almost get free rides on the T said:
[...] before the expo. Don’t lie, you’re intrigued — hit up the links below for all the nitty-gritty.Read - Pacemaker hackRead - MTA dues MIT hackersRead - Restraining orderPermalink | Email [...]
7:46 pm
Defcon duo: how-to shut off a pacemaker, almost get free rides on the T said:
[...] before the expo. Don’t lie, you’re intrigued — hit up the links below for all the nitty-gritty.Read - Pacemaker hackRead - Massachusetts Transit Authority sues MIT hackersRead - Restraining order on [...]
7:48 pm
Defcon duo: how-to shut off a pacemaker, almost get free rides on the T | Gadgetorium! said:
[...] Read - Pacemaker hackRead - Massachusetts Transit Authority sues MIT hackersRead - Restraining order on said hackers [...]
7:49 pm
Defcon duo: how-to shut off a pacemaker, almost get free rides on the T » Developages - Development and Technology Blog said:
[...] Read - Pacemaker hackRead - Massachusetts Transit Authority sues MIT hackersRead - Restraining order on said hackers [...]
7:54 pm
Defcon duo: how-to shut off a pacemaker, almost get free rides on the T | PC and gadgets blog MyPCProblems.info said:
[...] before the expo. Don’t lie, you’re intrigued — hit up the links below for all the nitty-gritty.Read - Pacemaker hackRead - MTA dues MIT hackersRead - Restraining orderPermalink | Email [...]
7:56 pm
Defcon duo: how-to shut off a pacemaker, almost get free rides on the T - World News said:
[...] before the expo. Don’t lie, you’re intrigued — hit up the links below for all the nitty-gritty.Read - Pacemaker hackRead - Massachusetts Transit Authority sues MIT hackersRead - Restraining order on [...]
8:09 pm
best ecommerce tips » Blog Archive » Defcon duo: how-to shut off a pacemaker, almost get free rides on the T said:
[...] before the expo. Don’t lie, you’re intrigued — hit up the links below for all the nitty-gritty.Read - Pacemaker hackRead - Massachusetts Transit Authority sues MIT hackersRead - Restraining order on [...]
8:12 pm
[Eng]how-to shut off a pacemaker, almost get free rides on the T - Overclock.net - Overclocking.net said:
[...] before the expo. Don’t lie, you’re intrigued — hit up the links below for all the nitty-gritty. Read - Pacemaker hack Read - Massachusetts Transit Authority sues MIT hackers Read - Restraining order [...]
8:24 pm
Lidless Dot Net » Blog Archive » Defcon duo: how-to shut off a pacemaker, almost get free rides on the T said:
[...] Read - Pacemaker hackRead - Massachusetts Transit Authority sues MIT hackersRead - Restraining order on said hackers [...]
8:39 pm
Engadget » Blog Archive » Defcon duo: how-to shut off a pacemaker, almost get free rides on the T said:
[...] Read - Pacemaker hackRead - MTA dues MIT hackersRead - Restraining order [...]
8:43 pm
Your Gadget Guide » Blog Archive » Defcon duo: how-to shut off a pacemaker, almost get free rides on the T said:
[...] Read - Pacemaker hackRead - Massachusetts Transit Authority sues MIT hackersRead - Restraining order on said hackers [...]
9:08 pm
Defcon duo: how-to shut off a pacemaker, almost get free rides on the T | Technology Blog said:
[...] Don’t lie, you’re intrigued — hit up the links below for all the nitty-gritty. Read - Pacemaker hackRead - Massachusetts Transit Authority sues MIT hackersRead - Restraining order on [...]
9:29 pm
Defcon duo: how-to shut off a pacemaker, almost get free rides on the T - taccato! trend tracker, cool hunting, new business ideas said:
[...] Read - Pacemaker hackRead - Massachusetts Transit Authority sues MIT hackersRead - Restraining order on said hackers [...]
10:01 pm
Spotgadgets.com » Blog Archive » Defcon duo: how-to shut off a pacemaker, almost get free rides on the T said:
[...] Read - Pacemaker hackRead - Massachusetts Transit Authority sues MIT hackersRead - Restraining order on said hackers [...]
11:10 pm
Gadget Train » Blog Archive » Defcon duo: how-to shut off a pacemaker, almost get free rides on the T said:
[...] Read - Pacemaker hackRead - Massachusetts Transit Authority sues MIT hackersRead - Restraining order on said hackers [...]
12:31 am
Defcon duo: how-to shut off a pacemaker, almost get free rides on the T | The Gulf Coast Crawler said:
[...] Read - Pacemaker hackRead - Massachusetts Transit Authority sues MIT hackersRead - Restraining order on said hackers [...]
12:56 am
Defcon duo: how-to shut off a pacemaker, almost get free rides on the T | Techno Portal said:
[...] Read - Pacemaker hackRead - Massachusetts Bay Transit Authority sues MIT hackersRead - Restraining order on said hackers [...]
2:04 am
jopettitt.com » Blog Archive » Defcon duo: how-to shut off a pacemaker, almost get free rides on the T said:
[...] Don’t lie, you’re intrigued — hit up the links below for all the nitty-gritty. Read - Pacemaker hackRead - Massachusetts Bay Transit Authority sues MIT hackersRead - Restraining order [...]
2:27 am
Video | dailytechnews.info said:
[...] Read - Pacemaker hackRead - Massachusetts Bay Transit Authority sues MIT hackersRead - Restraining order on said hackers [...]
8:47 am
Diabetic? An artificial pancreas could be on its way said:
[...] good, but there can be problems. Last week at the hacking expo Defcon, researchers demonstrated how they could hack a pacemaker remotely. [...]
10:18 am
Hackers kan slå ut din pacemaker | Björns blog said:
[...] på idg. Artikel på VentureBeat. Kevin Fus avhandling. This was written by bornie. Posted on Monday, August 11, 2008, at 7:18 pm. [...]
1:26 pm
Pacemakers can be remotely pwned - taccato! trend tracker, cool hunting, new business ideas said:
[...] Defcon: Excuse me while I turn off your pacemaker, Pacemakers and Implantable Cardiac Defibrillators: Software Radio Attacks and Zero-Power Defenses [...]
1:39 pm
Findings From DEFCON And Black Hat, With Funny Figurines « dubLaboratory said:
[...] fact that pacemakers can be turned off by radio frequency. I have a cousin that works for Medtronic - I hope this hasn’t ruined his [...]
6:03 pm
News » Pacemakers can be remotely pwned said:
[...] Defcon: Excuse me while I turn off your pacemaker, Pacemakers and Implantable Cardiac Defibrillators: Software Radio Attacks and Zero-Power Defenses [...]
3:01 am
Defcon duo: how-to shut off a pacemaker, almost get free rides on the T | F-Default said:
[...] Read - Pacemaker hackRead - Massachusetts Bay Transit Authority sues MIT hackersRead - Restraining order on said hackers [...]
10:09 am
Hackers Figure Out How to Wirelessly Control Pacemakers said:
[...] up the links below for all the nitty-gritty.Update: MIT published the Defcon presentation in a PDF.Read - Pacemaker hackRead - Massachusetts Bay Transit Authority sues MIT hackersRead - Restraining order [...]
8:34 am
GEARFUSE » Wireless Kill Switch For Pace Maker For Future Euthanasia said:
[...] Link (via) Read More Maker Faire This Weekend In San Mateo, CAAwesome Kill Bill Mods for Desktop and Xbox 360: This is us at our most sadisticSwitchMe Salt And Pepper Shaker: A Switch For Your TableDIY: On / Off Footswitch for appliances and toolsBattlebot Owns Pleo at the Maker Faire TAGS: bug, control, crpytographic key, defense, device, euthanasia, hackers, heart, Kevin Fu, pacemaker, Wireless SHARE: Stumble Upon, Digg, del.icio.us, Reddit this, SlashdotSend to a FriendPermalink [...]
9:38 am
Pacemaker Wireless Power Off Exploit and Countermeasure - Hacked Gadgets - DIY Tech Blog said:
[...] Via: Gearfuse and Defcon [...]
7:13 pm
EckerNet.Com » Blog Archive » Deep Thoughts With Kevin said:
[...] Good News : Your pacemaker is more advanced than you thought. Bad News : Well basically it’s wireless and someone has already figured out how to kill you via that wireless interface. [...]
2:10 am
Defcon duo: how-to shut off a pacemaker, almost get free rides on the T | Leopard O.S. said:
[...] Read - Pacemaker hackRead - MTA dues MIT hackersRead - Restraining order [...]
9:10 pm
Security News Highlights « technola said:
[...] passed on information that pacemakers can be hacked. This hack was presented at from DefCon, a huge security [...]
2:49 pm
Hackear un marcapasos | Tecnologia y Sociedad said:
[...] La noticia la encontré por aqui: chw.net que lo vió en Inglés por aqui: VentureBeat [...]
4:17 pm
Pacemakers can be remotely pwned | MashTopic said:
[...] Defcon: Excuse me while I turn off your pacemaker [...]