33 Vulnerabilities In Smart Wearables Detected in 2021

18 of the security flaws found in wearables last year were considered critical.

Subscribe to our Telegram channel for the latest stories and updates.

In 2021 the most commonly used protocol for transferring data from wearable devices used for remote patient monitoring contained 33 vulnerabilities, including 18 “critical vulnerabilities”, according to Kaspersky.

That is 10 more critical vulnerabilities than in 2020, and many of them remain unpatched.

Kaspersky research found that 91% of global healthcare providers have implemented telehealth capabilities. However, this rapid digitalization has created new security risks, especially when it comes to patient data

The MQTT protocol is the most common protocol for transmitting data from wearable devices and sensors. It can be found not only in wearable devices but also in almost any smart gadget.

Unfortunately, when using MQTT, authentication is completely optional and rarely includes encryption.

This makes MQTT highly susceptible to man in the middle attacks (when attackers can place themselves between “two parties” while they communicate).

When it comes to wearable devices, that information could include highly sensitive medical data, personal information, and even a person’s movements.

Since 2014, 90 vulnerabilities in MQTT have been discovered, including critical ones, many of which remain unpatched to this day.

Kaspersky researchers also found vulnerabilities on one of the most popular platforms for wearable devices: the Qualcomm Snapdragon Wearable platform.

There have been more than 400 vulnerabilities found since the platform was launched; not all have been patched, including some from 2020.

“The pandemic has led to a sharp growth in the telehealth market, and this doesn’t just involve communicating with your doctor via video software.

We’re talking about a whole range of complex, rapidly evolving technologies and products, including specialised applications, wearable devices, implantable sensors, and cloud-based databases.

However, many hospitals are still using untested third-party services to store patient data, and vulnerabilities in healthcare wearable devices and sensors remain open.

Before implementing such devices, learn as much as you can about their level of security to keep the data of your company and your patients safe.

Maria Namestnikova, Head of the Russian Global Research and Analysis Team (GReAT) at Kaspersky.

Share your thoughts with us via TechTRP's Facebook, Twitter and Telegram channel for the latest stories and updates.

Previous Post

You Might Want To Update Your Chrome Browser Immediately. Here’s Why.

Next Post

Should The Government Develop A National Ride Hailing Service?

Related Posts
Total
0
Share