1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Medical device security ignites an ethics firestorm

Discussion in 'Network World' started by RSS, Aug 27, 2016.

  1. RSS

    RSS New Member Member

    One security research company is taking a controversial approach to disclosing vulnerabilities: It’s publicizing the flaws as a way to tank a company’s stock.

    The security firm, MedSec, made news on Thursday when it claimed that pacemakers and other health care products from St. Jude Medical contain vulnerabilities that expose them to hacks.

    However, MedSec is also cashing in on the disclosure by partnering with an investment firm that’s betting against St. Jude Medical’s stock.

    The whole affair is raising eyebrows around the security community. It may be the first time someone has tried to get compensated for discovering vulnerabilities by shorting a stock, said Casey Ellis, CEO of Bugcrowd, a bug bounty platform.

    To read this article in full or to leave a comment, please click here

    Continue reading...
     

Share This Page