Security News > 2023 > April > CISA Warns of Critical Flaws in Illumina's DNA Sequencing Instruments
The U.S. Cybersecurity and Infrastructure Security Agency has released an Industrial Control Systems medical advisory warning of a critical flaw impacting Illumina medical devices.
"Successful exploitation of these vulnerabilities could allow an attacker to take any action at the operating system level," CISA said.
"A threat actor could impact settings, configurations, software, or data on the affected product; a threat actor could interact through the affected product via a connected network."
The Food and Drug Administration said an unauthorized user could weaponize the shortcoming to impact "Genomic data results in the instruments intended for clinical diagnosis, including causing the instruments to provide no results, incorrect results, altered results, or a potential data breach."
This is not the first time severe flaws have come to light in Illumina's DNA Sequencing Devices.
The disclosure comes almost a month after the FDA issued new guidance that will require medical device makers to adhere to a set of cybersecurity requirements when submitting an application for a new product.
News URL
https://thehackernews.com/2023/04/cisa-warns-of-critical-flaws-in.html
Related news
- CISA Urges Agencies to Patch Critical "Array Networks" Flaw Amid Active Attacks (source)
- CISA confirms critical Cleo bug exploitation in ransomware attacks (source)
- CISA Adds Critical Flaw in BeyondTrust Software to Exploited Vulnerabilities List (source)
- CISA warns of critical Oracle, Mitel flaws exploited in attacks (source)
- CISA Flags Critical Flaws in Mitel and Oracle Systems Amid Active Exploitation (source)