Hands-on, immersive CTI courses at the Cyber Threat Intelligence Summit & Training in January! Register for the free Summit!


To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Once you register, you can download the presentation slides below.

Unbreak my Heart Lessons learned for building better medical devices while troubleshooting my pacemaker

  • Wednesday, November 04, 2020 at 10:30 AM EST (2020-11-04 15:30:00 UTC)
  • Veronica Schmitt

You can now attend the webcast using your mobile device!



Join me for an in-depth conversation covering my journey from lethal forensicator to patient and through to security researcher. In the traditional sense digital forensics and incident response (DF/IR) is done post-mortem. These processes are instrumental in handling any ongoing breach and in preserving the evidence, in order to do a root-cause analysis afterwards. With Covid-19 having taken the world by storm, many physicians and healthcare professionals have become even more dependent on remote monitoring and telehealth. This talk will focus on the very varied ecosystem and will cover a wide variety of devices in order to identify potential evidence sources and their weaknesses for medical / healthcare forensics. As we move into the digital age with our healthcare we have become dependent on these devices, relying on them to prolong our lives. So, to better prepare for the future we are heading towards, an in-depth root-cause analysis should be done on the maturity of these devices so we can be sure they will keep up with the demands. We will focus on a few areas that need improvement - especially during the development of these devices - and we will apply forensic sciences to better ensure the correct level of maturity throughout the development cycle of them.

Speaker Bio

Veronica Schmitt

Veronica started her forensic career in 2008. She is the Director of Incident Response within DFIRLABS. Veronica is also an Assistant Professor at Noroff University. ​Veronica holds a ​Master in Science at Rhodes University in Information Security with specialisation in the forensic analysis of malware. ​She prides herself in keeping patients safe as this is something which is near to her heart. She is also a cyborg sporting an embedded medical device herself. She also is a DEF CON Goon and she is the founder of DC2751.

Her particular research interests include research into security vulnerabilities in medical devices forming part of the Internet of Things, and how these could be exploited by malicious attackers, as well as what types of forensic artefacts could be identified from any attacks. She is extremely passionate about protecting people whose lives depend on these medical devices, and her passion saw her becoming a researcher within an MDM. She is also developing a digital forensics and incident response approach dealing specifically with implanted medical devices and medical devices installed within a healthcare setting. ​At her core Veronica is a forensicator and hacker and in love with every bit, byte and nibble of knowledge she has obtained.

Need Help? Visit our FAQ page or email webcast-support@sans.org.

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.