Welcome to our new website! If this is the first time you are logging in on the new site, you will need to reset your password. Please contact us at raps@raps.org if you need assistance.
The regulatory function is vital in making safe and effective healthcare products available worldwide. Individuals who ensure regulatory compliance and prepare submissions, as well as those whose main job function is clinical affairs or quality assurance are all considered regulatory professionals.
Resources, news and special offers to support you and your professional development during this difficult time.
One of our most valuable contributions to the profession is the Regulatory Code of Ethics. The Code of Ethics provides regulatory professionals with core values that hold them to the highest standards of professional conduct.
Your membership opens the door to free learning resources on demand. Check out the Member Knowledge Center for free webcasts, publications and online courses.
Like all professions, regulatory is based on a shared set of competencies. The Regulatory Competency Framework describes the essential elements of what is required of regulatory professionals at four major career and professional levels.
RAPS Convergence is going virtual. Join the brightest minds in regulatory online to gain the latest knowledge in the field in an all-virtual experience with workshops, one-on-one expert sessions, and networking communities.
This year, our European regulatory community will converge online with a fully virtual program that will allow attendees to experience Euro Convergence live online from the safety and comfort of their homes.
RAPS' “how to” guide to developing a comprehensive global regulatory strategy for all types of medical devices. Updated September 2020.
The last exam window of 2020 is currently open. Register by 8 October to take the RAC exam this autumn.
The site navigation utilizes arrow, enter, escape, and space bar key commands. Left and right arrows move across top level links and expand / close menus in sub levels. Up and Down arrows will open main level menus and toggle through sub tier links. Enter and space open menus and escape closes them as well. Tab will move on to the next part of the site rather than go through menu items.
RAPS is closely monitoring developments in the Coronavirus (COVID-19) outbreak. See our public safety page for the latest updates.
Posted 30 August 2017 | By Michael Mezher
Medical device maker Abbott on Monday announced it is voluntarily recalling some 465,000 pacemakers to install a firmware update to patch cybersecurity vulnerabilities in the devices.
The recall affects six pacemaker models—Accent, Accent MRI, Accent ST, Allure, Anthem and Assurity—that Abbott acquired when it completed its purchase of St. Jude Medical last January.
Patients with the devices are being told to speak to their doctors to determine whether they should receive the update, which will require an in-person visit to install.
The vulnerabilities, which could allow an attacker to modify the devices' pacing commands or cause premature battery depletion, first came to light in a 2016 report by short-seller Muddy Waters based on research done by cybersecurity firm MedSec Holdings.
The US Food and Drug Administration (FDA) says it reviewed and approved the updated firmware, which will limit the number of commands the devices can receive wirelessly and prevent the transmission of unencrypted data.
Abbott says that new pacemakers made as of 28 August will come pre-patched with the update, and both the company and FDA say that already-implanted devices should not be physically replaced due to cybersecurity concerns.
According to Abbott, the update itself should take around three minutes, during which the devices will operate on a backup mode that keeps pacing at 67 beats per minute.
The company also says the risks of performing the update are low based on its previous experience with firmware updates. The risks, which include reloading previous firmware due to an incomplete installation, loss of currently programmed settings and loss of device functionality all occur at rates well below 1%.
But as a precaution, Abbott says that pacing dependent patients should be given the update in a facility where temporary pacing and a pacemaker generator are on hand.
This marks the second time Abbott has issued a cybersecurity-related update for its St. Jude cardiac devices. Just days after Abbott completed its acquisition of St. Jude, the company released a software update to address vulnerabilities in its Merlin@home devices, which are used to transmit patient data from the company's implantable pacemakers and defibrillators to physicians.
Both Abbott and FDA say there are no known reports of cyberattacks targeting any of the devices, and the Department of Homeland Security's Industrial Control Systems Cyber Emergency Response Team (DHS ICS-CERT) says that a hacker would need to possess "high skill" to exploit the vulnerabilities.
FDA, Abbott, DHS
Tags: Cybersecurity, Abbott, St. Jude Medical
Regulatory Focus newsletters
All the biggest regulatory news and happenings.