FDA alerts health care facilities to infusion pump cybersecurity vulnerability
AHA News Now
May 14, 2015
The Food and Drug Administration yesterday issued recommendations for health care facilities to reduce the risk of security vulnerabilities identified in two computerized infusion pumps made by Hospira. The Hospira LifeCare PCA3 and PCA5 Infusion Pump Systems are computerized infusion pumps designed for the continuous delivery of anesthetic or therapeutic drugs. The systems can be programmed remotely through a health care facility’s Ethernet or wireless network. An independent researcher has released information about security vulnerabilities that could allow an unauthorized user to interfere with the pump’s functioning. FDA said it is not aware of any adverse events or unauthorized device access related to the vulnerabilities, and will communicate any new information about patient risks or additional steps users should take to secure these devices as it becomes available. For additional information or questions about the infusion pumps, contact Hospira at 800-241-4002.
Topic: Quality and Patient Safety
Tags: patient safety, Cybersecurity