Today at the Usenix Security conference, a group of University of Washington researchers will present a paper showing how they wrote a piece of malware that attacks common gene-sequencing devices and encoded it into a strand of DNA: gene sequencers that read the malware are corrupted by it, giving control to the attackers.
It's an imperfect attack: it only works 37% of the time, and the researchers used a deliberately weakened version of the sequencing software, but the reliability and virulence of the attack will likely increase in future iterations.
Regardless of any practical reason for the research, however, the notion of building a computer attack—known as an "exploit"—with nothing but the information stored in a strand of DNA represented an epic hacker challenge for the University of Washington team. The researchers started by writing a well-known exploit called a "buffer overflow," designed to fill the space in a computer's memory meant for a certain piece of data and then spill out into another part of the memory to plant its own malicious commands.
But encoding that attack in actual DNA proved harder than they first imagined. DNA sequencers work by mixing DNA with chemicals that bind differently to DNA's basic units of code—the chemical bases A, T, G, and C—and each emit a different color of light, captured in a photo of the DNA molecules. To speed up the processing, the images of millions of bases are split up into thousands of chunks and analyzed in parallel. So all the data that comprised their attack had to fit into just a few hundred of those bases, to increase the likelihood it would remain intact throughout the sequencer's parallel processing.
Computer Security, Privacy, and DNA Sequencing:
Compromising Computers with Synthesized DNA, Privacy Leaks, and More [Peter Ney, Karl Koscher, Lee Organick, Luis Ceze and Tadayoshi Kohno/Usenix Security]
BIOHACKERS ENCODED MALWARE IN A STRAND OF DNA
Disney is being sued by the Michael Jackson estate for using fair-use clips in a biopic called "The Last Days of Michael Jackson" -- in its brief, the company decries "overzealous copyright holders" whose unwillingness to consider fair use harms "the right of free speech under the First Amendment."
When scammers get inside of the networks of financial institutions, they sometimes stage "cashouts" where they recruit confederates around the world to all hit ATMs at the same time with cards tied to hacked accounts and withdraw the maximum the ATMs will allow; but the wilier criminals first disable the anti-fraud and withdrawal maximum features […]
Karl Schroeder's 2014 novel Lockstep featured tour-de-force worldbuilding, even by the incredibly high standards of Karl Schroeder novels: the human race speciates into cold-sleeping cicadas who only wake for one day in ten, or a hundred, or a million, allowing them to traverse interstellar distances and survive on the meager energy and materials available in deep space; with his new novella The Million, Schroder shows us how Lockstep is lived on Earth, the cradle of the human species, where a brutal murder threatens to blow apart the life of a very out-of-step protagonist.
Traveling isn’t always the most comfortable experience, but at least you have your music to keep you company on those long flights. That is, until your chatty neighbor and that crying baby three seats over drown out your playlist. These Paww WaveSound 3 Noise-Cancelling Bluetooth Headphones block up to 20 decibels of audio, so you can […]
SEO can be a fickle creature, but it can work in your favor—you just need the right tools. When it comes to getting your site on that coveted first page of Google, SERPstash Premium simplifies the process with 21 user-friendly tools designed to break down your page’s performance and show you where you can improve. Lifetime […]
Running a Shopify store is a great way to net some extra cash on the side or—if you really know what you’re doing—replace your 9-to-5 altogether. However, success doesn’t come naturally, and newcomers tend to receive mixed results when starting on their own. This E-Commerce Bootcamp can help start your Shopify venture off on the right […]