Our DNA is at risk of hacking, warn scientists
University of Portsmouth
A study, published in IEEE Access, highlights
growing concerns over how this powerful sequencing tool -- if left unsecured --
could be exploited for data breaches, privacy violations, and even future
biothreats.
Led by Dr Nasreen Anjum from the University of Portsmouth's
School of Computing, it is the first comprehensive research study of
cyber-biosecurity threats across the entire NGS workflow.
NGS is a cornerstone of modern biotechnology, enabling rapid
and cost-effective DNA and RNA sequencing that supports important advances in
cancer research, drug development, agricultural innovation and forensic
science.
The sequencing process within NGS workflow involves a series
of complex, interdependent steps -- from sample preparation and sequencing to
data analysis and interpretation -- each involving highly specialized
instruments, technologies, software, and connected systems.
While the steps are essential for generating accurate
results, they also open up multiple points of vulnerability. As many DNA
datasets are openly accessible online, the study warns it is possible for
cybercriminals to misuse the information for surveillance, manipulation, or
malicious experimentation.
Dr Anjum said: "Our work is a wake-up call. Protecting genomic data isn't just about encryption -- it's about anticipating attacks that don't yet exist. We need a paradigm shift in how we secure the future of precision medicine."
The research was carried out in collaboration with
colleagues from the Department of Computer Science at Anglia Ruskin University
in Cambridge, the University of Gloucestershire's Department of Cyber Security
and Computing, Narjan University's Department of Computer Science and Emerging
Research Laboratory, and the Department of Microbiology at Shaheed Benazir
Bhutto Women University.
Dr Mahreen-Ul-Hassan, microbiologist and co-author from the
Shaheed Benazir Bhutto Women University, said: "Genomic data is one of the
most personal forms of data we have. If compromised, the consequences go far
beyond a typical data breach."
The research team identified new and emerging methods that
hackers and those with malicious intent could use to exploit or attack systems,
such as synthetic DNA-encoded malware, AI-driven manipulation of genome data,
and identity tracing through re-identification techniques. These threats go
beyond typical data breaches, posing risks to individual privacy, scientific
integrity, and national security.
Dr Anjun added: "Despite its importance,
cyber-biosecurity remains one of the most neglected and poorly understood
research disciplines and is leaving a critical gap in global biosecurity. To
make sure our DNA information stays safe and is used only for good, we're
urging more research and collaboration to find ways to keep this powerful
technology secure.
"Governments, regulatory bodies, funding agencies, and
academic institutions must prioritise this field and invest in dedicated
research, education, and policy development before it's too late.
"Without coordinated action, genomic data could be
exploited for surveillance, discrimination, or even bioterrorism. Current
protections are fragmented, and vital collaboration between disciplines is
lacking. Key to successful prevention will be interdisciplinary cooperation
between computer scientists, bioinformaticians, biotechnologists, and security
professionals -- groups that rarely work together but must align.
"Our research lays the foundations for improving
biosecurity by providing a single, clear list of all the possible threats in
the entire next-generation sequencing process."
The paper also recommends practical solutions, including
secure sequencing protocols, encrypted storage, and AI-powered anomaly
detection, creating a foundation for much stronger cyber-biosecurity.
The study was funded by the British Council's UK-Saudi Challenge Fund and a Quality Related Research Grant from the University of Portsmouth.
