Profile picture
, 12 tweets, 3 min read
My Authors
Read all threads
Medtech giant Medtronic is quite a piece of work. The company started as a Minneapolis repair shop before growing to be one of the world's largest, most profitable - and lowest-taxed, thanks to financial engineering - corporations.

1/
Despite the company's origins in conducting unauthorized repairs on behalf of hospitals and other device owners, Medtronic (along with Apple) has led the fight to kill dozens of state #RightToRepair bills:

pluralistic.net/2020/07/10/fli…

2/
Medtronic's dirty tricks campaigns against R2R are especially salient now, because the company has sabotaged its ventilators so they can't be repaired by hospital engineers without obtaining an unlock code from the company:

pluralistic.net/2020/07/10/fli…

3/
But Medtronic's device defects aren't limited to ventilators. At least as alarming is the company's history of making personal medtech devices (including pacemakers) that are insecure in every conceivable way.

4/
Medtronic devices have been shown to be LETHALLY compromisable by sending them unencrypted wireless signals or just by poisoning their unsecured supply chain, which allows you to inject malicious firmware into devices en masse.

5/
If there was ever a manufacturer whose customers needed to be able to turn to third parties to shore up its products (literally) fatal deficiencies, it's Medtronic.

6/
Which brings me to the present moment. It's been two years since QED Security Solutions' @XSSniper and Jonathan Butts presented their work on Medtronic's Minimed insulin pump, showing that it could be remotely controlled by cheap wireless devices.

7/
Among the attacks they enabled: dumping the device's full supply of insulin, potentially killing the person wearing it.

8/
The defects they identified were intrinsic to the device and the only defense was disabling the wireless, which rendered the device useless for family members who helped loved ones manage their insulin (especially young kids or people with dementia, etc).

9/
Still, Medtronic dragged its feet on a recall, saying (incredibly) that it had known about these defects for years before Rios and Butts told them about it, but had decided not to fix them and didn't see why that should change now.

10/
Finally, though, the company has launched a "voluntary recall" - after Rios and Butts built an Android app that exploited the defect they identified and created a "universal remote for every one of these insulin pumps in the world" and presented it at Black Hat.

11/
This is an app that would let the user murder Medtronic users from a distance of several feet. Obviously, they haven't released it, but the publicity did its job.

wired.com/story/medtroni…

Finally.

eof/
Missing some Tweet in this thread? You can try to force a refresh.

Keep Current with Cory Doctorow #BLM

Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

Twitter may remove this content at anytime, convert it as a PDF, save and print for later use!

Try unrolling a thread yourself!

how to unroll video

1) Follow Thread Reader App on Twitter so you can easily mention us!

2) Go to a Twitter thread (series of Tweets by the same owner) and mention us with a keyword "unroll" @threadreaderapp unroll

You can practice here first or read more on our help page!

Related hashtags

#RightToRepair

More from @doctorow see all

Profile picture
Cory Doctorow #BLM
@doctorow
Google sucks at IoT so, in the time-honored tradition of monopolists, it bought a successful company, Nest, bricked much of its existing gear, failed catastrophically to integrate it for YEARS, exposing users to hacks, shuffled it around and around the corporate structure...

1/
Locked out competing devices, hid secret microphones in new, "microphone-free" devices, and now...

...they've bought a $450m stake in home security giant ADT, which will turn ADT customers into nonconsensual Nest customers.

blog.google/products/googl…

2/
Under the deal, ADT customers' security cameras will be "upgraded" to Nest devices whose videos will be sent to Google for long-term storage and machine-learning analysis.

3/
Read 8 tweets
Profile picture
Cory Doctorow #BLM
@doctorow
Twitter is uniquely poised to lead on interoperability and federation; though they are very large, they are dwarfed by their major competitors, Facebook and Wechat. What's more, Twitter was initially built for federation, with wide, generous APIs that facilitated interop.

1/
Over the years, Twitter has grown progressively more closed and also more fraught, as the problems of harassment, brigading, and hate speech have dogged the daily operations of the service, rising to the level of a global geopolitical crisis at times.

2/
Facebook and Wechat maintain the pretense that this could all be solved if governments would just tell them what rules to enforce and then they'd use machine learning and boiler-rooms full of traumatized moderation subcontractors to make it so.

3/
Read 13 tweets
Profile picture
Cory Doctorow #BLM
@doctorow
The Collective Action in Tech project has just released its latest guide: "a guide to organize tech workers to support the anti-racism movement."

collectiveaction.tech/blm

1/
The guide starts by acknowledging that tech has a history and a present of shoring up anti-Black racism, from IBM's role in Apartheid to algorithmic bias to harassment and discrimination in tech workplaces.

2/
It repeats Jamelle Bouie's assertion that anti-racism is a stepping stone towards (and dependent upon) universal liberation: racial discrimination and violence are part of the project to divide working people, and overcoming them unites us all.

3/
Read 11 tweets

Embed code for your website

×
Follow Us on Twitter!

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3.00/month or $30.00/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!