FDA Reports Illumina Cybersecurity Vulnerability May Present Risks for Patient Results and Customer Networks

June 03, 2022

On June 2, 2022, the U.S. Food and Drug Administration (FDA) reported (https://www.fda.gov/medical-devices/letters-health-care-providers/illumina-cybersecurity-vulnerability-may-present-risks-patient-results-and-customer-networks-letter) a cybersecurity vulnerability that affects software in the Illumina NextSeq 550Dx, MiSeqDx, NextSeq 500, NextSeq 550, MiSeq, iSeq, and MiniSeq next generation sequencing instruments. The devices are used in diagnostic (Dx), research-use only (RUO), or dual boot (either Dx or RUO) modes. 

FDA Reports Illumina Cybersecurity Vulnerability May Present Risks for Patient Results and Customer Networks

The cybersecurity vulnerability affects the local run manager (LRM) software. Unauthorized users can exploit the LRM, remotely taking control of the instrument, altering instrument configurations, or affecting patient test results. 

According to FDA, Illumina has developed a software patch to protect users against the vulnerability and is working to launch a permanent software fix for all instruments. FDA urged laboratory personnel and healthcare providers to be aware of the required actions to mitigate the cybersecurity risks. If you are using one of the devices in your practice, FDA recommended that you: 

Illumina has developed a software patch to protect against the exploitation of the vulnerability and is working to provide a permanent software fix. FDA and Illumina have not received any reports indicating the vulnerability has been exploited. 

FDA is working with Illumina and coordinating with the Cybersecurity Infrastructure Security Agency to identify, communicate, and prevent issues related to the vulnerability.  

Healthcare professionals should report any adverse reactions or quality problems (https://www.accessdata.fda.gov/scripts/medwatch/index.cfm) they experienced using the device to MedWatch, FDA’s Safety Information and Adverse Event Reporting Program. 


Copyright © 2022 by the Oncology Nursing Society. User has permission to print one copy for personal or unit-based educational use. Contact pubpermissions@ons.org for quantity reprints or permission to adapt, excerpt, post online, or reuse ONS Voice content for any other purpose.