Illumina Inc. has agreed to a $9.8 million settlement with the U.S. government to resolve allegations that it sold the federal government genomic sequencing systems riddled with cybersecurity flaws.
The case against the biotech company specializing in genetic analysis was brought under the False Claims Act, which allows the Department of Justice to pursue damages from vendors who violate contracts. It has become a staple of federal prosecutions of government contractors accused of shirking cybersecurity responsibilities.
The DOJ alleged that between 2016 and 2023, the San Diego-based firm sold government agencies products that included software vulnerabilities. Illumina had an inadequate security program, the government said, and did not sufficiently monitor for or fix cybersecurity issues in its products.
Illumina “knowingly failed to incorporate product cybersecurity in its software design, development, installation, and on-market monitoring,” a DOJ press release said.
It also starved staff and systems charged with product security of resources and deceptively claimed that its software met national benchmarks for cybersecurity standards, the government said.
Over the past few years, federal agencies and Illumina itself have issued multiple warnings about vulnerabilities in its products. Illumina did not immediately respond to a request for comment.
“Companies that sell products to the federal government will be held accountable for failing to adhere to cybersecurity...
Former Justice Department official Jeffrey Clark, a longtime ally of President , should be stripped of his law license for his role in efforts to overturn the results of the 2020 presidential elec...