Consumer IPOs from Snap to Uber have been disappointing and serve as a reminder that private investors are making all the money.Technologyread more
The company's comments Friday come after the White House said U.S.Trade Representative Robert Lighthizer will "address the threatened impairment" of national security from...Autosread more
China's currency has been an important barometer for progress in U.S.-Chinese trade talks, and right now it's signaling things aren't going well.Market Insiderread more
Apple CEO Tim Cook was the commencement speaker at Tulane University Saturday. In his speech, the tech executive focused on the importance of addressing climate change and...Power Playersread more
Amazon's large and flashy investments stand out from those of its tech peers over the past year.Technologyread more
Some analysts see streaming services like Netflix becoming hindered by one of the things that made them so popular in the first place — binge watching.Entertainmentread more
There is a shortfall of cybersecurity workers that could reach as high as 3.5 million unfilled roles by 2021. A start-up called Synack provides crowdsourced security, and...CNBC Disruptor 50read more
Yardeni Research's Edward Yardeni recommends investing in U.S. companies with exposure to China.Trading Nationread more
CNBC and SurveyMonkey's latest small business optimism index echoes that sentiment, finding 52 percent of small businesses say it's harder to find workers today than it was a...US Economyread more
CNBC combed through Wall Street research over the last week to see which stocks analysts say have the best risk-reward.Marketsread more
Western Union is not panicking, but the delivery of money around the world is being upended, says CEO of upstart TransferWise. It broke into the $689 billion remittances...CNBC Disruptor 50read more
Security researchers say they've found flaws in the Medtronic pacemaker that leaves the life-saving device vulnerable to hackers and puts patients at risk.
Billy Rios and Jonathan Butts say they've found vulnerabilities that compromise the pacemaker's programmer, which can control the electrical impulses that are sent to the heart to regulate a patient's heartbeat. There are about 33,000 of these programmers in use — called the CareLink 2090.
Rios and Butts demonstrated the security weaknesses earlier this month at the annual Black Hat cyber security conference in Las Vegas, one of the industry's most prestigious annual meetings.
Rios, who founded a startup focused on embedded device security called WhiteScope, says he presented his research publicly because he is frustrated by what he calls Medtronic's slow response to addressing and fixing these flaws.
"They are more interested in protecting their brand than their patients," Rios told CNBC, noting that the technical fix for these vulnerabilities is relatively easy.
For its part, the medical device company says the likelihood of a successful cyber attack is low, and that the company is not aware of any security breaches involving patients with its medical devices.
"All medical devices carry some associated risk, and, like the regulators, we continuously strive to balance the risks against the benefits our devices provide," Medtronic said in a statement.
Medtronic next reports its financial results on Aug. 21.
Here is the full Medtronic statement:
Medtronic emphasizes the safety of its products. Product safety and quality are top priorities for Medtronic, and we have a strong product security program that leverages internal and external security and medical device experts, rigorous development processes and current practices to enable security and usability. We are, and continue to be, committed to delivering safe and effective devices to address our patients' therapeutic conditions.
It's important to note, however, that the likelihood of a breach of a patient's device is low, and we are not aware of any security breaches involving patients with our medical devices. All medical devices carry some associated risk, and, like the regulators, we continuously strive to balance the risks against the benefits our devices provide.
Additionally, we value collaboration and transparency with industry partners and the regulatory community, and we support FDA guidance on these matters. Medtronic is committed to a robust, coordinated disclosure process and takes seriously all potential cybersecurity vulnerabilities in our products and systems, and we consistently seek to improve these processes, in terms of our technical evaluation, required remediation and speed of disclosure. We follow formal processes, as required by the FDA and other regulators, for evaluating and mitigating the risks associated with all cybersecurity vulnerabilities.
In the past, WhiteScope, LLC has identified potential vulnerabilities which we have assessed independently and also issued related notifications. If new vulnerabilities are brought to our attention, we will assess them in accordance with our processes as developed pursuant to FDA guidelines
Medtronic provides updates on security vulnerabilities and provides its full statements on device security issues here.