Automated Apoplexy, A Serious Problem With Aethon Robots In Hospitals Averted

Source: The Register Automated Apoplexy, A Serious Problem With Aethon Robots In Hospitals Averted

A Patch Against JekyllBot:5 Stops Hospital Robots From Going Mr. Hyde

Today’s terrifying news about lousy security comes from a hospital near you, who you can only hope paid attention to the notice from Aethon that a security update needs to be applied immediately.  Aethon supplies autonomous hospital robots which can be used to transport critical supplies to various parts of a hospital, capable of navigating the hallways and using elevators as well as keeping track of which supplies are needed for which patients.

It seems security was more than a little lax on these autonomous robots as researchers discovered “five bugs, collectively called JekyllBot:5, required no special privileges or user interaction” in order to gain significant access.  It is not just that there was no protection against interference either, some of these vulnerabilities could be triggered remotely over the web.  Aethon have released patches for these flaws; one hopes they are quickly applied and that there are not more lurking behind the scenes.

The flaws included not just the ability for attackers to access user credentials and medical records, but to deliver incorrect medications or even fail to deliver them completely.  Thanks to it’s ability to use cameras to traverse the hallways attackers could use this to remotely surveil those same hospital, or use it’s control over elevators to lock them out. 

Let’s hope this security lesson makes an impact, as it is not the first time vulnerabilities in automation have seriously endangered hospital patients. 

Mobile robot maker Aethon has fixed a series of vulnerabilities in its Tug hospital robots that, if exploited, could allow a cybercriminal to remotely control thousands of medical machines.

Video News

About The Author

Jeremy Hellstrom

Call it K7M.com, AMDMB.com, or PC Perspective, Jeremy has been hanging out and then working with the gang here for years. Apart from the front page you might find him on the BOINC Forums or possibly the Fraggin' Frogs if he has the time.

Leave a reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Latest Podcasts

Archive & Timeline

Previous 12 months
Explore: All The Years!