FDA Warns Medical Device Bluetooth Security Flaw Could Disrupt Function

A set of cybersecurity flaws found in a range of medical devices with Bluetooth Low Energy (BLE) could allow a hacker to remotely crash a device or access its data, according to a recent alert from the Food and Drug Administration. The BLE is used to pair and exchange data between two devices to perform specific functions and preserve battery life. However, researchers discovered a flaw, dubbed SweynTooth, that could allow a hacker to remotely crash the device, stop its function, or access functions typically only available to the authorized user. The vulnerability affects the BLE wireless communication technology found in certain products designed by several microchip manufacturers, including Texas Instruments, NXP, Cypress, Dialog Semiconductors, Microchip, STMicroelectronics, and Telink Semiconductor.