These materials form the basis for students presentations in my Medical Software class at Yale (BENG 406b). Some of these are also described in our Introduction to Medical Software textbook in Chapters 17-22.
If you have more examples, or better articles/videos about the stories listed above, please share them with me and I will add them to this list.
Mars Climate Orbiter: Lost Without A Trace (1999)
The 2020 Iowa Caucus App
Boeing 737-MAX Accidents (2019--present)
WannaCry Cybersecurity Incident (2017)
The PIP Breast Implant Scandal (2010s)
Under Construction ...
Hart A. Cyber attack disrupts cancer care. The Atlanta Journal-Constitution. 2021
Mulcahy N. Recent Cyberattack Disrupted Cancer Care Throughout U.S. WebMD. 2021
Yale New Haven Health able to treat cancer patients again after nearly a week offline due to data breach (WTNH, April 28, 2021.)
Pacheco MF and Suansing R. YNHHS pauses radiotherapy treatment for six days after software breach. Yale Daily News. 2021
These two papers describe related incidents.
Nelson CJ, Soisson ET, Li PC, Lester-Coll NH, Gagne H, Deeley MA, Anker CJ, Roy LA, Wallace HJ. Impact of and response to cyberattacks in radiation oncology. Adv Radiat Oncol. Elsevier BV; 2022 Sep 1;7(5):100897. PMCID: PMC9486427.
Faul C, Robinson J, Carey J, McArdle O, Ryan L, Woods R, McClean B. Effect of the Cyberattack Targeting the Irish Health System in May 2021 on Radiation Treatment at St. Luke’s Radiation Oncology Network. Adv Radiat Oncol. 2022 Sep;7(5):100993. PMCID: PMC9486413
(Thanks to Sanjay Aneja for his help with this.)
EPIC Sepsis Algorithm
Muoio D. Epic’s widely used sepsis prediction model falls short among Michigan Medicine patients. Fierce Healthcare. 2021
Wong A, Otles E, Donnelly JP, Krumm A, McCullough J, DeTroyer-Cooley O, Pestrue J, Phillips M, Konye J, Penoza C, Ghous M, Singh K. External validation of a widely implemented proprietary sepsis prediction model in hospitalized patients. JAMA Intern Med. American Medical Association (AMA); 2021 Aug 1;181(8):1065–1070. PMCID: PMC8218233
Unregulated Algorithms in Healthcare – EPIC and Sepsis. American Council on Science and Health. 2022
Some additional Links & Information
(Thanks to Andreea Popescu, Hugo Felix and Pratik Patel for the links.)
There are quite a few healthcare ones. Most popular are Tylenol pulled off the shelf in 1982. Great HBR article on it. https://store.hbr.org/product/johnson-johnson-the-tylenol-tragedy/583043. 2. Medtronic StealthStation auto-registration feature. There have been 11 reported injuries. https://www.paulsonandnace.com/six-of-the-worst-medical-device-recalls-of-2020/. 3. Top 10 med device list. https://www.medicaldevice-network.com/analysis/biggest-medical-device-recalls/. (Pratik Patel)
These might be useful https://embeddedartistry.com/fieldatlas/historical-software-accidents-and-errors/ and https://www.pingdom.com/blog/10-historical-software-bugs-with-extreme-consequences (Andrea Popescu)
The Lifescan One-Touch Verio recall in 2013 where the device at extremely high blood glucose levels of 1024 mg/dL and above, would not provide a warning that the blood glucose is extremely high and would shut off, thereby potentially leading to incorrect treatment and delaying proper treatment. (Hugo Felix)