URGENT FIELD SAFETY NOTIFICATION
MiniMed™ remote controller (MMT-500 or MMT-503)
August 2018
Because the safety of our patients is our top priority, we are informing you of a potential security risk related to the Medtronic MiniMed™ 508 and Medtronic MiniMed™ Paradigm™ series insulin pumps when using the corresponding MiniMed™ remote controller.
Explanation of the Issue
The Medtronic remote controller, which uses a wireless (RF) radio frequency to communicate with your insulin pump, helps in programming a set amount of insulin (or bolus) into your Medtronic pump discreetly while keeping your device concealed.
An external security researcher has identified a potential vulnerability related to the MiniMed™ Paradigm™ family of insulin pumps and corresponding remote controller. The researcher’s report states that an unauthorized individual in close proximity of an insulin pump user could potentially copy the wireless radio frequency (RF) signals from the user’s remote controller (while they are in the process of delivering a remote bolus) and play those back later to deliver an involuntary bolus of insulin to the pump user. This could lead to potential health risks such as hypoglycemia if additional insulin is delivered beyond the user’s insulin requirements.
The following list shows the Medtronic remote controller and compatible Medtronic insulin pump(s) that are vulnerable to this issue.
| Remote controller | Model Number Location | Compatible Insulin pump(s) |
|---|---|---|
MMT-500 |
|
Medtronic MiniMed™ 508 pump |
MMT-503 |
|
MiniMed™ Paradigm™ 511 pump MiniMed™ Paradigm™ 512/712 pumps MiniMed™ Paradigm™ 515/715 pumps MiniMed™ Paradigm™ 522/722 pumps MiniMed™ Paradigm™ 523/723 pumps MiniMed™ Paradigm™ 523(K)/723(K) pumps MiniMed™ 530G 551/751 pumps MiniMed™ Paradigm™ Veo™ 554/754 |
Several factors must occur for your pump to be vulnerable:
- The remote option for the pump would need to be enabled. This is not a factory-delivered default, and a user must choose this option.
- The user’s remote controller ID needs to be registered to the pump.
- The Easy Bolus™ option would need to be turned on and a bolus step size programmed in the pump.
- An unauthorized individual would need to be in close proximity of the user, with necessary equipment to copy the RF signals activated, when the user is delivering a bolus using the remote controller.
- The unauthorized individual would need to be in close proximity of the user to play back the RF signals to deliver a malicious remote bolus.
- The user would need to ignore the pump alerts, which indicates that a remote bolus is being delivered.
Protecting the security of your insulin pump
If you are concerned but want to continue to use the convenience of the remote controller, the following are some precautions you can take to minimize risk:
- Turn off Easy Bolus™ feature when not intending to use the remote bolus option
- Be attentive to the pump alerts, especially when the easy bolus option is turned on, and immediately cancel any unintended bolus
- Do not connect to any third-party devices not authorized by Medtronic
Please note that if you have never programmed a remote controller ID into your pump and never programmed the Easy Bolus™ option, you will not be impacted by this vulnerability.
The MiniMed™ Paradigm™ family of insulin pumps remain safe and effective for diabetes management, so we encourage you to continue your therapy as you normally would and take these precautionary steps if you are concerned.
At Medtronic, patient safety is our top priority, and we are committed to delivering safe and effective therapies that undergo rigorous clinical, quality, manufacturing and regulatory controls to ensure this for our customers. We appreciate your time and attention in reading this important notification.
As always, we are here to support you. If you have further questions or need assistance, please call our support line at: 1-888-204-7616.
Sincerely
James Dabbs
Vice President, Quality Assurance
Medtronic Diabetes