Catch up on stories from the past week (and beyond) at the Slashdot story archive


Forgot your password?

Comment: Re:I don't understand the big deal (Score 2) 24

You can also exploit the thing by opening it up and cutting wires.

Look, this is a medical device. People carry it around with them. Sometimes, a technician may need to make changes to it. They do that by plugging into an ethernet port on the device. Otherwise, it is never plugged in.

Do I need a security passcode on everything that somebody could walk up to? Give me a break. My microwave doesn't have one either.

Once your opponent has physical access to the sensitive medical devices that keep you alive, you're fucked. He could just as well put bleach in the insulin bag.

Except that it has an Ethernet port. With an open Telenet. On a PCA pump (Patient Controlled Analgesia - a morphine drip). Which can kill the patient with the wrong dose.


I think that, in 2015, one can reasonably expect the rudiments of security with a machine designed to deliver accurate quantities of a potentially fatal drug. Sure, it doesn't need to be hardened against every potential exploit but an open telenet port? That's pretty weak sauce. Aside from potentially killing a patient, an addicted nurse / tech (I was going to say doctor but they typically wouldn't know a telenet port if it went up and bit them in the nose) could potentially use this to siphon off the drug for their own use. The things have various locks and passwords to prevent that exact thing from happening.

Comment: Re:I'm sure no one will misconstrue this at all... (Score 4, Insightful) 88

by ColdWetDog (#49631087) Attached to: Apple's Plans For Your DNA

They aren't taking the DNA sample FROM the iPhone. You are mailing a sample of DNA to some lab which will link your SNP profile with your iTunes ID number.

Now, think of this for a minute. The ability to associate SNPs with buying proclivities. An "Apple gene", if you will.

Now folks, this is a marketing executives wet dream complete with hookers and blow.

Comment: Re:UPC or Item/part number codes? (Score 1) 439

by ColdWetDog (#49629379) Attached to: The Medical Bill Mystery

would it be easier to treat medical treatment like any other industry? Everything has an upc or a item/part number and a description. Stick a barcode on everything then just scan it if the patient need the thing used on them. Stick bar codes on room doors, needles, pills. Dr/Nurse/staff badges. This way your interaction would be recorded and billed correctly.

Oh this is exactly what happens. In fact, in medicine, we have gone farther than any other industry - we have lots of (different) barcodes and numbers for everything.

And just to keep everyone on their toes, we change them at random intervals.

Comment: Re:School me on well water (Score 1) 312

It IS a marketing ploy. There is no a priori reason for 'natural spring water' to be particularly clean or pure. It depends on WHAT rocks the water went through, whether there were heavy metals leaching through the water table, whether there are bacteria from nearby sources that are leaking though and a host of other things.

"Natural spring water" makes as much health sense as 'Naturally radioactive'.

Sorry if you're deeply offended. The world is like that sometimes.

Comment: Re:Thank Greeks and Microsoft for your iWatches! (Score 1) 51

You do realize that these systems are connected to the Internet? The same Internet that everyone else is connected to. The fact that the server is in the middle of the ocean is irrelevant. As is the fact (true enough) that a significant fraction of commercial shipping is run by Greek firms.

I suppose it being in Greek might be an example of security by obscurity, but it's just TCP/IP and the same Microsoft code that everyone else uses.

Comment: Re:Not exactly a hack (Score 3, Interesting) 78

by ColdWetDog (#49605567) Attached to: Hacking the US Prescription System

Your pharmacist has sold your prescription data to some shady third party for advertising purposes. Somehow they managed to loophole that out of HIPAA - it's a 'service' for your own good - or something along those hallucinatory lines.

Supposedly you can opt out but you first have to know if you got opted in.

I'm actually surprised that this hasn't generated much flack, but there are so many things to get angsted at I think that most people are just overwhelmed. Personally, I ran out of extra angst a long time ago.

Comment: Re:Interesting... (Score 1) 514

by ColdWetDog (#49604015) Attached to: Tesla Announces Home Battery System

While I don't hold myself out as an expert in rack mounted UPS systems, I can safely say that APC is pretty bad after tossing a bunch of them out shortly after they're purchased.

I have found the folks at Don Rowe helpful for power inverter stuff. In my case for marine applications. I really like the KISAE inverters / UPS - have three of them that have been running for over a year in some fairly tough conditions.

But there has to be a better professional vendor than APC. Even their mid range stuff is put together like typical Chinese consumer electronics. The KISAE units are much better finished and have beefier PCB boards, mountings and hardware.

"A great many people think they are thinking when they are merely rearranging their prejudices." -- William James