The Food and Drug Administration has issued its final guidance on protecting medical devices like pacemakers and insulin pumps from cyberattacks. To start with, it wants manufacturers to boost their cybersecurity measures by incorporating a way to monitor and detect vulnerabilities into the products they make. The FDA also wants them to establish a process for receiving information about potential vulnerabilities from cybersecurity researchers. If they do detect any exploitable flaw, the agency wants the companies to assess the risk it poses to patients. Finally, it wants the medical device makers to issue software patches to fix any vulnerability it finds.