Pacemaker manufacturer Medtronic warns patients cybercrooks may have swiped health data

https://image.theregister.com/250887.jpg?imageId=250887&x=0&y=0&cropw=72.87&croph=100&panox=0&panoy=0&panow=72.87&panoh=100&width=1200&height=683

Company that also makes insulin pumps and other devices tells users what was exposed months after ShinyHunters attack

Medical device giant Medtronic is warning patients that their personal and health information may have been caught up in an April cyberattack in which intruders spent nearly a week inside parts of its corporate network.

According to breach notification letters sent to affected individuals, the company detected unusual activity on April 15 and later determined an unauthorized party accessed certain corporate systems between April 13 and April 19.

The compromised systems contained the sort of data you'd expect a medical device maker to hold about its patients: names, contact details, dates of birth, Social Security numbers, and health information. Medtronic said it collects the information to provide product updates and comply with regulatory requirements.

Medtronic says there's "no evidence" the information was "posted publicly or exposed on the internet." Whether the attackers...

Copyright of this story solely belongs to theregister.com. To see the full text click HERE

Read more