FDA alerts providers to cyber vulnerability in DNA sequencing devices

May 01, 2023 - 03:20 PM
cybersecurity-hand-lock-graphic_900x400

The Food and Drug Administration last week alerted health care providers and laboratory personnel to a cybersecurity vulnerability affecting the Universal Copy Service software in certain Illumina medical devices used to sequence DNA for clinical diagnostic use or research. According to the FDA, an unauthorized user could exploit the vulnerability to take control of the device remotely; alter settings, software or data on the device or customer’s network; or affect or breach genomic data results. Customers should review the company’s April 5 notice, immediately install the software patch and contact the company at techsupport@illumina.com if they suspect their device has been compromised. For more on the vulnerability, see the Cybersecurity & Infrastructure Security Agency's April 27 advisory.

Related News Articles

Headline
DOJ announces disruption of BlackSuit ransomware group 
The Department of Justice Aug. 11 announced a series of actions taken against the BlackSuit ransomware group, also known as “Royal,” including the disruption…
Headline
Tactics by Scattered Spider cybercriminals highlighted in joint advisory 
The FBI, Cybersecurity and Infrastructure Security Agency and international agencies July 29 released a joint advisory on recent tactics by the Scattered…
Headline
Microsoft says China-based threat actors behind SharePoint attacks 
Microsoft July 22 released an update on the ongoing cyberattacks to SharePoint servers used within organizations, attributing the incidents to China-based…
Headline
Agencies warn of activity by Interlock ransomware
The FBI, Cybersecurity and Infrastructure Security Agency, Department of Health and Human Services, and Multi-State Information Sharing and Analysis Center…
Headline
Microsoft issues alert on vulnerabilities in ongoing SharePoint attacks 
Microsoft July 19 issued an alert about active attacks from vulnerabilities targeting SharePoint servers used within organizations. The incidents have not…
Headline
AHA blog: Why and How to Incorporate Physical Security Risk into Your Enterprise Risk Management
In his latest AHA Cyber and Risk Intel blog, Scott Gee, AHA deputy national advisor for cybersecurity and risk, explains how hospitals can prepare for and…