Drug Pump and Medical Device Security

SecTor 2015

Presented by: Jeremy Richards
Date: Tuesday October 20, 2015
Time: 15:55 - 16:55
Location: 801B
Track: Tech

Wifi connected drug infusion pumps known as 'Smart Pumps" have been used in hospitals for over a decade. What could go wrong? Answer: Death. They have recently been the target of much interest in the hardware hacking community. In this talk we will tear down one of these pumps and identify a number of security vulnerabilities and design flaws.

Links

Jeremy Richards

Jeremy Richards is a vulnerability researcher for SAINT Corporation – performing research and uncovering weaknesses in a variety of technologies, and developing security software professionally for nearly a decade. These days he spends his time writing remote unauthenticated vulnerability checks by reverse engineering changes introduced by security patches and identifying the root cause. Jeremy has recently started developing a framework to extract data from firmware images and perform automated analysis. His research in this area has uncovered a compelling number of undocumented risks that impact a large number of devices and user environments.


KhanFu - Mobile schedules for INFOSEC conferences.
Mobile interface | Alternate Formats