According to a cybersecurity notice from the Food and Drug Administration, certain pacemakers and cardiac devices are currently vulnerable to hacking. Although security researchers have warned about the security risks to medical devices for years now , this is the first time we’ve seen the government publicly acknowledge a specific threat. The vulnerable devices included under the FDA’s warning are not the pacemakers themselves, but rather the Merlin@home Transmitters made by St. Jude Medical. The transmitters are part of a home monitor that connects to pacemakers and other implanted cardiac devices using a wireless RF signal. The Merlin is designed to read the data stored on a pacemaker and then upload that data to its own cloud on the Merlin.net Patient Care Network, where a physician can access and monitor the device and the patient’s health. Although it doesn’t mention specifics of the threat, the government acknowledges that Merlin monitors could be hacked to send modified commands to a patient’s pacemaker or other device. With the right access, a hacker could do anything from deplete a pacemaker’s battery to shocking a patient or throwing off their heartbeat. On the bright side, the FDA says there have been no reported hacks and no patients have been harmed so far. To fix the problem, a software patch will be automatically applied over-the-air to affected Merlin@home devices starting today. Patients or their caregivers only need to ensure the devices are online and connected to get the fix. Source: FDA , St. Jude Medical
Original post:
FDA warns that certain pacemakers are vulnerable to hacking
Reader coondoggie writes: The Federal Trade Commission has filed a complaint against network equipment vendor D-Link saying inadequate security in the company’s wireless routers and Internet cameras left consumers open to hackers and privacy violations. The FTC, in a complaint filed in the Northern District of California charged that “D-Link failed to take reasonable steps to secure its routers and Internet Protocol (IP) cameras, potentially compromising sensitive consumer information, including live video and audio feeds from D-Link IP cameras.” For its part, D-Link Systems said it “is aware of the complaint filed by the FTC.” According to the FTC’s complaint, D-Link promoted the security of its routers on the company’s website, which included materials headlined “Easy to secure” and “Advance network security.” But despite the claims made by D-Link, the FTC alleged, the company failed to take steps to address well-known and easily preventable security flaws such as “hard-coded” login credentials integrated into D-Link camera software — such as the username âoeguestâ and the password âoeguestâ — that could allow unauthorized access to the cameras’ live feed, etc. Read more of this story at Slashdot. 
From a report on TorrentFreak: 2016 has been a memorable year for torrent users but not in a good way. Over a period of just a few months, several of the largest torrent sites vanished from the scene. From KickassTorrents, through Torrentz to What.cd, several torrent giants have left the scene.Another notable website which vanished is TorrentHound. ThePirateBay is back, but is often facing issues. Not long ago, ExtraTorrent noted that it was on the receiving end of several DDoS attacks. Read more of this story at Slashdot.