Skip to main page content
U.S. flag

An official website of the United States government

Dot gov

The .gov means it’s official.
Federal government websites often end in .gov or .mil. Before sharing sensitive information, make sure you’re on a federal government site.

Https

The site is secure.
The https:// ensures that you are connecting to the official website and that any information you provide is encrypted and transmitted securely.

Access keys NCBI Homepage MyNCBI Homepage Main Content Main Navigation
. 2017 Mar;11(2):207-212.
doi: 10.1177/1932296816677576. Epub 2016 Dec 5.

Think Like a Hacker

Mandeep Khera  1
Affiliations

Think Like a Hacker

Mandeep Khera. J Diabetes Sci Technol. 2017 Mar.

Abstract

Ready or not, the Internet of things (IoT) is here. No longer just a buzz term, it'll continue to grow at an unprecedented pace over the next few years expecting to reach over 25 billion connected devices by 2020. History shows us that most fast growth technology solutions focus on solving business problems first and security is an afterthought. Unfortunately, IoT is following the same trend. Most IoT devices, apps, and infrastructure were developed without security in mind and are likely going to become targets of hackers. According to some security experts, major cyberattacks against the IoT devices are looming. According to the FBI, criminals can gain access to unprotected devices used in home health care, such as those used to collect and transmit personal monitoring data or time-dispensed medicines. Once criminals have breached such devices, they gain access to any personal or medical information stored on the devices, as well as the power to change the coding that controls the dispense mechanism of medicines or health data collection. This can result in major health issues and potential loss of lives. Are organizations ready to protect themselves? What are the key vulnerable points? There are various steps that companies can take to raise the barrier. In this article, we'll talk about the background, issues, potential attack vectors liable to be hacked, protection strategies, and more.

Keywords: Internet of things security; IoT security; application hardening; application security; application self-protection; cybersecurity; hackers; medical device security; medical device vulnerabilities.

PubMed Disclaimer

Conflict of interest statement

Declaration of Conflicting Interests: The author(s) declared the following potential conflicts of interest with respect to the research, authorship, and/or publication of this article: Mandeep Khera is a full-time employee of Arxan.

References

    1. Radcliffe J. Hacking medical devices for fun and insulin: breaking the human SCADA system. Available at: https://media.blackhat.com/bh-us-11/Radcliffe/BH_US_11_Radcliffe_Hacking.... Accessed October 13, 2016.
    1. Schwartz M. Insulin pump hack controversy grows. August 26, 2011. Available at: http://www.darkreading.com/vulnerabilities-and-threats/insulin-pump-hack.... Accessed October 13, 2016.
    1. US Government Accountability Office. Medical devices: FDA should expand its consideration of information security for certain types of devices. August 31, 2012. Available at: http://www.gao.gov/products/GAO-12-816. Accessed October 13, 2016.
    1. US Food and Drug Administration. Cybersecurity for medical devices and hospital networks: FDA safety communication. June 13, 2013. Available at: http://www.fda.gov/MedicalDevices/Safety/AlertsandNotices/ucm356423.htm. Accessed October 13, 2016.
    1. Hoskins M. Diabetes device “hacker” joins forces with FDA. August 8, 2013. Available at: http://www.healthline.com/diabetesmine/diabetes-device-hacker-joins-forc.... Accessed October 13, 2016.

Publication types