Blog Viewer

Minimed Update by Kelsey Hutter

By Megan Watts posted 25 days ago

  

Medtronic Mini-Med 600 series pump:  Cybersecurity threat

The FDA has issued an alert warning for people with diabetes using the MiniMed 600 series pump system.  This system is facing a potential cybersecurity threat.   This alert was issued on September 20, 2022.

The MiniMed wireless pump system includes:

  • the MiniMed 630G and MiniMed 670G pump series
  • the Contour Next Link BG Meter
  • Guardian 3 Link transmitter
  • the Carelink USB

This potential cyber threat was recently identified through Medtronic internal testing.   Because this system transmits data wirelessly, a nearby unauthorized person could gain access to a patient’s pump at the same time that the pump is being paired with other system components.  This could result in the insulin pump delivering too much or too little insulin which could result in hypoglycemia (low blood sugar) or hyperglycemia (high blood sugar). 

 

Medtronic has reported there has been no evidence to date that this event has occurred. It is important to notify your patients of this potential issue associated with communication protocol used by pump system. 

Medtronic recommends that patients take all the actions and precautions listed below:

 

ACTIONS REQUIRED:

  1. Turn off the “Remote Bolus” feature on your pump if it is turned on.

Note that the “Remote Bolus” capability is on by default, so you should take this action

even if you have never used this feature.

  1. Conduct any connection linking of devices in a non-public place.

 

RECOMMENDED PRECAUTIONS:

  1. Keep your pump and connected system components within your control at all times.
  2. Be attentive to pump notifications, alarms and alerts.
  3. Immediately cancel any boluses you or your care partner did not initiate, monitor blood

glucose levels closely and reach out to Medtronic Technical Support at 1-800 284-4416 to

report the bolus.

NOTE: Turning off Remote Bolus feature will ensure no REMOTE bolus is possible. 

  1. Disconnect the USB device from your computer when you are not using it to download

pump data.

  1. DO NOT confirm remote connection requests or any other remote action on the pump

screen unless it is initiated by you or your care partner.

  1. DO NOT share your pump’s or devices’ serial numbers.
  2. DO NOT accept, calibrate, or bolus using a blood glucose reading you didn’t initiate.
  3. DO NOT connect to or allow any third-party devices to be connected to your pump
  4. DO NOT use any software which has not been authorized by Medtronic as being safe for

use with your pump.

  1. Get medical help immediately when experiencing symptoms of severe hypoglycemia or

diabetic ketoacidosis.

  1. Reach out to Medtronic Technical Support at 1-800 284-4416 if you suspect a pump setting

or insulin delivery have changed unexpectedly, without your knowledge.

 

Please contact Medtronic Technical Support at 1-800-284-4416 if you suspect unauthorized access has occurred or if you experience any adverse events or quality problems with your device.

 

Kelsey Hutter, MS, RD, CDCES, LD/N

0 comments
9 views

Permalink