Malware in DNA could infect computers
As improvements in DNA sequencing for medical and genetic testing continue to advance, the computer software tools used to process and analyze such data present “new and unexpected interactions” between electronic and biological systems, say the researchers.
In a study examining the computer security practices of commonly used, open-source DNA sequencing programs, the researchers showed that it is theoretically possible to produce synthetic DNA that is capable of compromising a computer system. Malicious computer code stored in the synthetic DNA could become executable malware that attacks the computer system when the DNA is analyzed.
The study hastens to add that there is currently no evidence of any present-day threats. However, it cautions the DNA sequencing community to proactively address computer security risks before they materialize.
“We don’t want to alarm people or make patients worry about genetic testing, which can yield incredibly valuable information,” says study co-author and Allen School associate professor Luis Ceze. “We do want to give people a heads up that as these molecular and electronic worlds get closer together, there are potential interactions that we haven’t really had to contemplate before.”
The research team identified several different ways that a DNA sequencing and processing stream could be compromised. In addition to potentially adding malicious executable code in synthetic DNA strands, an attacker could exploit known security gaps in many open-source software programs used to analyze DNA sequencing data.
To address vulnerabilities in the DNA processing pipeline, the researchers offer a number of suggestions: follow best practices for secure software, incorporate adversarial thinking when setting up processes, monitor who has control of the physical DNA samples, verify sources of DNA samples before they are processed, and develop ways to detect malicious executable code in DNA.
For more, see “Computer Security and Privacy in DNA Sequencing.”
Related articles:
‘Dangerous’ security flaws in safety-critical Internet device design, finds survey
Defeating cyberattacks on 3D printers
New malware targets power grids, say researchers
IoT devices becoming ‘cyberweapon of choice’ for attackers
AI speeds up precision medicine, says IBM Watson study
If you enjoyed this article, you will like the following ones: don't miss them by subscribing to :