FDA MedWatch - LifeCare PCA3 and PCA5 Infusion Pump Systems by Hospira: FDA Safety Communication - Security Vulnerabilities

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Title: FDA MedWatch - LifeCare PCA3 and PCA5 Infusion Pump Systems by Hospira: FDA Safety Communication - Security Vulnerabilities
MedWatch logoMedWatch - The FDA Safety Information and Adverse Event Reporting Program

LifeCare PCA3 and PCA5 Infusion Pump Systems by Hospira: FDA Safety Communication - Security Vulnerabilities

 

AUDIENCE:Pharmacy, Nursing, Risk Manager, Engineering 

ISSUE: The FDA and Hospira have become aware of security vulnerabilities in Hospira’s LifeCare PCA3 and PCA5 Infusion Pump Systems.  An independent researcher has released information about these vulnerabilities, including software codes, which, if exploited, could allow an unauthorized user to interfere with the pump’s functioning. An unauthorized user with malicious intent could access the pump remotely and modify the dosage it delivers, which could lead to over- or under-infusion of critical therapies. The FDA is not aware of any patient adverse events or unauthorized device access related to these vulnerabilities.

The FDA is actively investigating the situation based on current information and close engagement with Hospira and the Department of Homeland Security. As new information becomes available about patient risks and any additional steps users should take to secure these devices, the FDA will communicate publicly.

BACKGROUND: The Hospira LifeCare PCA3 and PCA5 Infusion Pump Systems are computerized infusion pumps designed for the continuous delivery of anesthetic or therapeutic drugs. These systems can be programmed remotely through a health care facility’s Ethernet or wireless network.

RECOMMENDATION:
Recommendations for Health Care Facilities:

 Refer to the FDA Safety Alert for detailed recommendations including a link to the ICS-CERT.


Healthcare professionals and patients are encouraged to report adverse events or side effects related to the use of these products to the FDA's MedWatch Safety Information and Adverse Event Reporting Program:

Complete and submit the report Online: www.fda.gov/MedWatch/report.htm

Download form or call 1-800-332-1088 to request a reporting form, then complete and return to the address on the pre-addressed form, or submit by fax to 1-800-FDA-0178

You are subscribed to MedWatch Safety Alerts for U.S. Food & Drug Administration (FDA). This information has recently been updated, and is now available.

Read the MedWatch safety alert, including links to the FDA Safety Communication, at: http://www.fda.gov/Safety/MedWatch/SafetyInformation/SafetyAlertsforHumanMedicalProducts/ucm446828.htm

 


This email was sent to list-fda@xxxxxxxxxxx using GovDelivery, on behalf of: U.S. Food & Drug Administration (FDA) · 10903 New Hampshire Ave · Silver Spring, MD 20993 · 800-439-1420 Powered by GovDelivery

[Index of Archives]     [CDC News]     [NIH News]     [USDA News]     [Steve's Art]     [Camping in Yosemite]     [PhotoForum]     [SB Lupus]     [STB]

  Powered by Linux