The human brain may become the next frontier in hacking, cybersecurity researchers have warned in a paper outlining the vulnerabilities of neural implant technologies that can potentially expose and compromise our consciousness.

While basic brain implants are already here, current science indicates we are on the brink of mastering the chemistry of memory. Deep Brain Stimulation (DBS) therapy involves implanting a device into the body to send electrical impulses to electrodes specifically placed to treat neurological diseases like Parkinson’s. “Memory implants” like those featured in dystopian TV series Black Mirror will most likely be built on existing DBS architecture. Kaspersky Labs collaborated with Oxford University to test these systems for security flaws before we start linking our consciousness to them, and their report is quite illuminating.

The technology to actually control memories through such implants will be available within 20 years, according to their predictions. A DARPA-funded study was recently able to isolate memory-encoding electrical signals from humans and feed them back, boosting short-term memory performance by 37 percent.

The researchers discovered security in existing implants is weakest where it connects to other systems, like the medical management platforms used by doctors and surgeons, and where data transfer between the implant, software, and other networks takes place. The most advanced of these devices currently in use operates over BlueTooth, which while popular and easy to use is not the most secure protocol.

Read more

Their report warned that malicious actors could not only hijack the implant itself, causing pain or otherwise making the body’s systems go haywire, but once the technology becomes advanced enough, they could hold a person’s memories for ransom – forcing the victim to pay up to access their own thoughts.

Any such implant will naturally require a backdoor so they can be accessed by medical professionals in case of emergency, and the research team underscored the human problem with such a setup: what’s to stop those medical professionals from selling access to a VIP patient’s implant, or from simply forgetting to change the factory-preset password?

Even though no attacks targeting neurostimulators have been observed in the wild, researchers warned it’s only because the technology is not yet widespread and there’s still time to fix potential vulnerabilities before it’s too late.

Like this story? Share it with a friend!