If your email program has trouble displaying this email, view as a webpage.

UPDATE: Cybersecurity Vulnerabilities with Certain Patient Monitors from Contec and Epsimed: FDA Safety Communication

The FDA has updated the Cybersecurity Vulnerabilities with Certain Patient Monitors from Contec and Epsimed: FDA Safety Communication with information regarding Contec’s new security advisory notice and software patch to fix the cybersecurity vulnerabilities. The patch fully removes networking functionality from the devices, making them only usable for local monitoring (vital signs only observable in the physical presence of the patient).

• Patients, caregivers, and health care providers should not try to install the software patch due to the technical expertise required for installation.
• Instead, the FDA advises patients, caregivers and health care providers continue to follow the recommendations in the “Recommendations for Patients and Caregivers” and “Recommendations for Health Care Providers” sections of the Safety Communication.
• Health care facility staff (including information technology and cybersecurity staff) should reach out to Contec at contact@ContecMed.com for the software patch and installation instructions.
• If unable to install the patch, staff should continue to follow the recommendations in the “Recommendations for Health Care Facility Staff (including Information Technology (IT) and Cybersecurity Staff)” section of the Safety Communication.

The FDA will continue to assess new information concerning the vulnerabilities and will keep the public informed if significant new information becomes available.

Questions?

If you have questions, contact the Division of Industry and Consumer Education.