Summary: Vulnerabilities in the BIOS/UEFI of Illumina’s iSeq 100 DNA sequencer could allow attackers to disable the device or manipulate test results, posing significant risks to medical and research applications. The outdated firmware and lack of security protections make it susceptible to various exploits, raising concerns about the integrity of genetic analysis and public health.
Threat Actor: Unknown | unknown
Victim: Illumina | Illumina
Key Point :
- Illumina’s iSeq 100 DNA sequencer has multiple BIOS vulnerabilities, including outdated firmware and lack of Secure Boot protections.
- Exploiting these vulnerabilities could allow attackers to disable the device or manipulate genetic test results, impacting medical research and treatments.
- Eclypsium identified five major issues, with some vulnerabilities dating back to 2017, highlighting the need for better security practices in medical devices.
- Illumina has issued a patch but maintains that the risks are not high, despite the potential for significant consequences if exploited.
- State and financially motivated actors may target these devices due to their critical role in healthcare and vaccine development.
Views: 0