Researchers from security firm Eclypsium have called out DNA sequencer Illumina iSeq 100 for not using Microsoft’s Secure Boot protection tool, potentially leaving it vulnerable to firmware attacks. The sequencer can boot from a legacy mode, using older systems which harbour years’ worth of potential vulnerabilities. Hardware Read/Write protections are not enabled, allowing an attacker to modify the device’s firmware. The sequencer is common in labs globally, including at gene-testing firm 23andMe.

New Triada comes preinstalled on Android devices
A new variant of the Triada Trojan has been discovered pre-installed on Android devices, enabling data theft from the moment the device is set up,