emfizz.com August 19, 2017

UW researchers demonstrate how evildoers could eventually hack into DNA data

10 August 2017, 11:37 | Patty Hardy

The University of Washington’s Lee Organick Karl Koscher and Peter Ney prepare the DNA exploit for sequencing

UW researchers with DNA data experiment

Each dot represents one strand of DNA in a given sample.

"The DNA sequencing community, and especially the programmers of bioinformatics tools, should consider computer security when developing software". DNA sequencers work by mixing DNA with chemicals that bind differently to DNA's basic units of code-the chemical bases A, T, G, and C-and each emit a different color of light, captured in a photo of the DNA molecules.

They said closing the security gaps in the software that's used for analyzing DNA is mostly a matter of following best practices in the computer industry.

To prove their point, the researchers turned a snippet of malicious computer code into a string of synthetic DNA, and then used it to take control of a computer that was programmed to search for patterns in the raw files that emerge from DNA sequencing.

As terrifying as this may sound, there is very little risk of your computer being hacked by DNA anytime soon.

The malware was encoded into DNA using a buffer overflow, a cybersecurity anomaly that occurs when a command overwhelms an allocated block of memory and overflows onto adjacent memory, causing the execution of malicious code.

By doing this, they have exposed a weakness in systems that could lead to hackers taking control of computers in research centres, universities and laboratories, reports MIT technology review.

The DNA hack will be shown at the Usenix Security Symposium in Vancouver later this month. Rather than exploit an existing vulnerability in the fqzcomp program, as real-world hackers do, they modified the program's open-source code to insert their own flaw allowing the buffer overflow.

Boyo Transportation school buses pass re-inspection
Department of Transportation, from 2003 to 2012, 174 school-age children died in school-transportation related crashes. All motorists should slow down, and be prepared to stop for school buses that are loading or unloading children.

The 'Overwatch' League adds two teams, expands to Europe
Blizzard revealed two more teams participating in its upcoming Overwatch League: one team representing London and a second team representing Los Angeles .

Blue Buffalo Pet Products, Inc. (BUFF) Stake Reduced by Vanguard Group Inc
EX-99.1 2 bluebuffalo063017ex991.htm EXHIBIT 99.1 Exhibit Exhibit 99.1Blue Buffalo Reports Second Quarter 2017 ResultsWilton, ... Fox Run Management L.L.C. purchased a new position in Blue Buffalo Pet Products during the second quarter valued at $675,000.

After sequencing, we observed information leakage in our data due to sample bleeding. "We agree with the premise of the study that this does not pose an imminent threat and is not a typical cyber security capability", Jason Callahan, the chief information security officer at gene-sequencing equipment manufacturer Illumina, told Wired. "For now, these attacks are hard in practice because it is challenging to synthesise malicious DNA strands and to find relevant vulnerabilities in DNA processing programs". "There are a lot of interesting-or threatening may be a better word-applications of this coming in the future", says Peter Ney, a researcher on the project.

'We don't want to alarm people or make patients worry about genetic testing, which can yield incredibly valuable information, ' said study co-author Dr Luis Ceze.

The electronic and molecular worlds are converging as scientists refine techniques for sequencing and synthesizing DNA (i.e. reading and writing DNA).

"One of the big things we try to do in the computer security community is to avoid a situation where we say, "Oh shoot, adversaries are here and knocking on our door and we're not prepared".

DNA is, at its heart, a system that encodes information in sequences of nucleotides.

Vendors and companies that manufacture synthetic DNA strands are reportedly on alert for bioterrorists and the researchers have suggested that they might have to check samples for threats in future. Mitigating this prospect however, is getting malicious DNA strands from a doctored sample into a sequencer, which presents many technical challenges.

Researchers at the UW Molecular Information Systems Lab are working to create next-generation archival storage systems by encoding digital data in strands of synthetic DNA.

Some were written in unsafe languages known to be vulnerable to attacks, in part because they were first crafted by small research groups who likely weren't expecting much, if any, adversarial pressure.

Other News

Trending Now

Christiansen appointed as new LEGO Group CEO
Mr Christiansen began his career at management consultancy McKinsey and became chief executive of GN Netcom when just 33. In a statement, Vig Knudstorp said the transition to find a new CEO "occurred more rapidly" than anticipated.

Soon, you won't have to awkwardly text or call your Uber driver
Both riders and drivers will see if their chats are delivered and read , to confirm the other actually received the communication. The driver can also be the first to send a message, but their app will strongly advise them only to do so while stationary.

76ers, Celtics to play in NBA London Game
The Boston Celtics and Philadelphia 76ers will travel to London in January for a game at The O2 arena. The contest will take place at The O2 on Thursday, Jan. 11.

Bank of England refuses to change animal-fat banknotes
It said the only viable alternative is palm oil, but this raises questions about environmental sustainability and value for money. The Bank of England has ignored calls from activists to ditch polymer notes that contain traces of animal fat.

Microsoft is finally bringing Outlook.com into the 21st century
Or if you're talking about when a flight lands, again it will pop up a suggestion to add the full flight details to the email. Outlook.com beta's new personalization options allow you to pin emails from specific contacts to your shortcuts sidebar.

Samsung Galaxy Note 8 Release Set For September 15
Nelson used waterproof adhesive to fix the gasket and didn't bother to push the fingerprint sensor back down. The good news is that according to a report from ET News, we might have an idea.

OJ Simpson's Infamous White Ford Bronco To Appear On 'Pawn Stars'
Cowlings drove Simpson during the chase, five days after the murders of Simpson's ex-wife, Nicole Brown Simpson, and Rob Goldman. TMZ reported last month that someone offered Gilbert $250,000 for the Bronco , but he declined.

Gophers kicker Justin Juenemann scholarship delivered by t-shirt cannon
Juenemann will be a redshirt senior in the fall. "He could easily not do it, and nobody would say anything". Juenemann later video chatted with his mom in Kansas, who was delirious with joy.

No Signs Of Manipulation Of Kenya Election - EU Observers
She briefed the media as part of the Carter Center observer mission with its head, former U.S. Provisional results project a convincing win for incumbent President Uhuru Kenyatta .

United States bombers with Korea, Japan jets show ready to 'Fight Tonight'
In one of the latest shows of force, the US military test-launched a Minuteman III ICBM missile from a US Air Force base in California.