Summary: Cybersecurity researchers have identified significant firmware vulnerabilities in the Illumina iSeq 100 DNA sequencing instrument that could allow attackers to disable the device or implant persistent malware. The outdated BIOS firmware lacks essential security features, making it a target for exploitation.
Threat Actor: (state-based actors, ransomware actors) | state-based actors, ransomware actors
Victim: (Illumina iSeq 100) | Illumina iSeq 100
Key Point :
- Firmware vulnerabilities could allow attackers to overwrite system firmware, potentially bricking the device or installing malware.
- The iSeq 100 uses outdated BIOS firmware without Secure Boot or standard write protections, increasing its vulnerability.
- Recent vulnerabilities in Illumina devices highlight the risks associated with critical medical technology, making them attractive targets for cyberattacks.
- Illumina has released a fix following responsible disclosure, but the potential for exploitation remains a concern.
Source: https://thehackernews.com/2025/01/researchers-uncover-major-security-flaw.html