So someone announced a wireless attack against an implantable cardiac device. While it does make for good press, I can see many valid arguments against the required remediation step, namely authentication of cardiac device programmers. Authentication of the cardiac programmers may impede use of the programmers in an emergency by an ambulance crew, for example. Additionally, key revokation would require surgery. This would be bad news. Long story short: interesting class of attacks, but don't freak out about it to your cardiologist; you could give yourself a heart attack that way.
As a side-note, medical devices have a long history of spoofing attacks, though. I do remember Joe Grand built a Palm Pilot program to control IV drug infusers maybe a decade ago.