martes, 27 septiembre 2022
Visitas totales a la web: 87907109

El portal de los profesionales de seguridad y emergencias

Nº 1 del mundo en español en seguridad global

Soluciones de seguridad global

Bioterrorists can trick scientists into making dangerous toxins or viruses by infecting lab computers with malware that alters synthetic DNA they produce for experiments

STACY LIBERATORE FOR DAILYMAIL.COM

  • A new cyberattack tricks scientists into making toxic chemicals or viruses.
  • Hackers can infect computers with malware to change DNA sequences.
  • They can bypass protocols set to scan DNA for malicious sequences.
  • Hackers can also camouflage their threats on the scientist’s computers.

Cyber security researchers uncovered an online attack that tricks scientists into creating toxic chemicals or deadly viruses in their own labs.

A team from Ben-Gurion University of the Negev found bioterrorists can infect an ‘unwitting’ biologist’s computer with malware and easily replace a short sub-string of the DNA in the code with a new sequence. 

The US Department of Health and Human Services (HHS) has protocols for screening DNA orders from synthetic gene providers that scan for potentially harmful DNA.

However, the team was able to bypass the guidelines through obfuscation and found 16 out of 50 obfuscated DNA samples were not detected when screened according to the ‘best-match’ HHS guidelines.Researchers found bioterrorists can infect an 'unwitting' biologist's computer with malware that replaces a short sub-string of the DNA in the code with a new sequence+3

Researchers found bioterrorists can infect an ‘unwitting’ biologist’s computer with malware that replaces a short sub-string of the DNA in the code with a new sequence

Rami Puzis, head of the Ben-Gurion University (BGU) Complex Networks Analysis Lab, said: ‘To regulate both intentional and unintentional generation of dangerous substances, most synthetic gene providers screen DNA orders, which is currently the most effective line of defense against such attacks.’

The researchers also found that accessibility and automation of the synthetic gene engineering workflow, combined with insufficient cybersecurity controls, allow malware to interfere with biological processes within the victim’s lab, closing the loop with the possibility of an exploit written into a DNA molecule.

The team described the attack in their study published in Nature using a scenario of Alice, Bob and Eva.

Alice is a scientists working at an academic institution and orders synthetic DNA from Bob, in which Eve, the attacker, replaces part of the ordered sequences with with a malicious sequence.

The team described the attack in their study published in Nature using a scenario of Alice, Bob and Eva. Alice is a scientists working at an academic institution and orders synthetic DNA from Bob, in which Eve, the attacker, replaces part of the ordered sequences with with obfuscated select agents and sequences for its future deobfuscation+3

The team described the attack in their study published in Nature using a scenario of Alice, Bob and Eva. Alice is a scientists working at an academic institution and orders synthetic DNA from Bob, in which Eve, the attacker, replaces part of the ordered sequences with with obfuscated select agents and sequences for its future deobfuscation

Eve also attacks Alice’s computer with malware that replaces part of Alice’s sequence and camouflages fragments of the pathogenic DNA in the hijacked order.

Alice unintentionally uses the malicious DNA along with other sequences, including Cas9. 

During the cell transformation, Cas9 proteins are combined with gRNA from the malicious sequence to form CRISPR complexes that create multiple double-strand breaks – resulting in a noxious agent.

‘This threat is real. We conducted a proof of concept: an obfuscated DNA encoding a toxic peptide was not detected by software implementing the screening guidelines,’ reads the published study.

‘The DNA injection attack demonstrates a significant new threat of malicious code altering biological processes.’ 

Alice unintentionally uses the malicious DNA along with other sequences, including Cas9. During the cell transformation, Cas9 proteins are combined with gRNA from the malicious sequence to form CRISPR complexes that create multiple double-strand breaks - resulting in a noxious agent+3

Alice unintentionally uses the malicious DNA along with other sequences, including Cas9. During the cell transformation, Cas9 proteins are combined with gRNA from the malicious sequence to form CRISPR complexes that create multiple double-strand breaks – resulting in a noxious agent

The researchers also found that accessibility and automation of the synthetic gene engineering workflow, combined with insufficient cybersecurity controls, allow malware to interfere with biological processes within the victim’s lab, closing the loop with the possibility of an exploit written into a DNA molecule.

‘This attack scenario underscores the need to harden the synthetic DNA supply chain with protections against cyber-biological threats,’ Puzis says.

‘To address these threats, we propose an improved screening algorithm that takes into account in vivo gene editing.

‘We hope this paper sets the stage for robust, adversary resilient DNA sequence screening and cybersecurity-hardened synthetic gene production services when biosecurity screening will be enforced by local regulations worldwide.’

Fecha de publicaciónnoviembre 30, 2020

BELT.ES no se hace responsable de las opiniones de los artículos reproducidos en nuestra Revista de Prensa, ni hace necesariamente suyas las opiniones y criterios expresados. La difusión de la información reproducida se realiza sin fines comerciales. 

Listado de Expertos

Recomendado

Profesión militar: Obediencia debida frente a la obligación de disentir

Con ocasión de la realización de estudios en el Instituto Universitario Gutiérrez Mellado tuve la ocasión de leer y analizar una serie de documentos de opinión que trataban en profundidad las diferentes facetas presentes en el campo de las relaciones cívico-militares; temas que , habitualmente, no han estado presentes en los diferentes cursos y actividades formativas en la enseñanza militar, ni, por supuesto, en la civil.

El amor de Macarena Olona por la Guardia Civil empieza por su pareja, un joven oficial condecorado

El padre de su hijo llegó a la Benemérita como militar de carrera y, los que le...

La artillería ‘made in USA’ comprada por Marruecos que deja fuera de juego a España

El país magrebí sigue reforzando sus fuerzas armadas a golpe de talonario, y no lo hace de...

Últimas noticias

Pilar Montero del grupo de emergencias en Patrimonio (UCM): «El terremoto de Lorca lo cambió todo»

La directora del grupo de investigación de Gestión de Riesgos y Emergencias en Patrimonio Cultural (GREPAC)...

La actriz de Hollywood que logró uno de los inventos militares más importantes del siglo XX

Hedy Lamarr pasó de huir del fascismo que se propagaba por Europa en los años treinta a enfrentarse directamente a él, creando...

SEGURIDAD, “GLOBAL BRITAIN” Y ENTIERRO DE LA REINA ISABEL II DEL REINO UNIDO

El 19 de septiembre de 2022, ha sido un día que pasará a la historia del Reino Unido y la del resto del mundo. En ese día se ha producido el entierro de la reina Isabel II de Inglaterra tras su fallecimiento el día 8 de septiembre en el castillo de Balmoral (Escocia).

El pulso electromagnético, el arma que puede hacer retroceder a una ciudad al siglo XIX

Estados Unidos, Rusia y China trabajan en sus propios proyectos. El Pentágono cree que Irán y Corea del Norte también lo hacen.

Así se gestó un ‘atraco virtual’ de 240.000 euros a través de Bizum

Más de un centenar de personas participó en un entramado para desvalijar la cuenta corriente de una anciana tras detectar una debilidad...