In 2023, attackers breached 23andMe and exposed genetic data from millions of users—data that can’t be “reset.” Meanwhile, sequencing labs run on cloud servers, DNA synthesis orders are placed online, and AI models design new proteins. Biology has gone digital faster than security has kept up.

Cyberbiosecurity is the protection of the digital infrastructure of biology: genomic data platforms, lab automation, AI/ML pipelines, and the healthcare systems that connect them. It combines cybersecurity and biosecurity to prevent data theft, manipulation, and misuse with real-world consequences for research integrity, patient safety, and national security.

This guide explains what cyberbiosecurity covers, why it matters now, and how leaders in biotech, genomics, and healthtech can take practical steps today.

What Cyberbiosecurity Covers

Cyberbiosecurity is a broad and multidisciplinary area. It includes:

• Genomic data security: Companies such as 23andMe, research institutions, and hospitals now hold vast databases of human genetic information. As the 23andMe breach in 2023 showed, these datasets are highly valuable targets and, once leaked, cannot be “reset” like a password.

• Biotech lab systems: Modern laboratories depend on connected systems such as DNA synthesis machines, automated sample handlers, and bioinformatics pipelines. If compromised, attackers could manipulate results, corrupt data, or disrupt critical research.

• Supply chain risks: Orders of reagents, genetic constructs, or pharmaceuticals are processed digitally. Weak authentication or insecure platforms could enable theft, substitution, or counterfeiting.

• AI and synthetic biology: The use of AI in protein design and synthetic biology creates new possibilities but also new risks. Without strong security controls, these systems could be hijacked for malicious purposes.

• Healthcare and diagnostics: From cloud-based biomarker analysis to sequencing platforms in hospitals, healthcare is deeply connected to digital infrastructure. Insecure systems could lead to privacy breaches or direct patient harm.

  
  

For a detailed view of vulnerabilities across biotech, see our 2025 Biotech Cybersecurity Report.

Why Cyberbiosecurity Matters

The risks are not theoretical. Cyberbiosecurity affects multiple domains of global importance:

• National security: Genomic databases and biotech intellectual property represent strategic assets. Breaches can weaken entire industries or expose population-level vulnerabilities.

• Patient privacy: Genetic information is the most personal identifier we have. Unlike a password or even a credit card, DNA cannot be changed once exposed.

• Research integrity: Scientific discovery relies on trust in data. If datasets are manipulated, drug discovery and diagnostics can be led astray.

• Bioterrorism prevention: DNA synthesis companies and bio-manufacturing platforms are potential attack vectors. Strong cyberbiosecurity ensures they cannot be tricked into producing harmful genetic material.

  
  

Real-World Examples

The importance of cyberbiosecurity is already visible in real-world events:

• The 23andMe breach in 2023 compromised the genetic data of millions of users. This demonstrated how vulnerable genomic databases are and how severe the consequences can be.

• Cloud misconfigurations in bioinformatics platforms and insecure APIs have exposed raw genomic sequences, sometimes available to anyone who knows where to look.

• Experts have raised concerns about cyber-biological sabotage, where attackers alter DNA design files or manufacturing instructions. This could cause failed experiments, wasted resources, or, in extreme cases, deliberate harm.

Who Works on Cyberbiosecurity

Because cyberbiosecurity cuts across digital and biological systems, no single discipline can address it. It requires collaboration between:

• Cybersecurity professionals who secure IT infrastructure, cloud platforms, and data protection.

• Biologists and bioengineers who understand laboratory processes, DNA synthesis, and research workflows.

• Policy makers and regulators such as the FDA, the EU under MDR/IVDR regulations, and the WHO.

• Companies in biotech, genomics, healthtech, and pharmaceuticals are increasingly implementing safeguards and increasingly being held accountable by investors, regulators, and patients.

  
  

How Sekurno Can Help

At Sekurno, we work with biotech, genomics, and healthtech companies to identify and close the security gaps that cyberbiosecurity brings to light. Our team combines offensive security expertise with a deep understanding of regulatory frameworks such as HIPAA, GDPR, FDA, and EU MDR/IVDR.

We help organizations:

• Assess the security of genomic databases, sequencing platforms, and cloud-based bioinformatics.

• Test and secure lab automation, APIs, and connected healthcare devices.

• Strengthen resilience against supply chain and infrastructure risks.

• Prepare for compliance audits with a security posture aligned to industry regulations.

Cyberbiosecurity is still an emerging field, but attackers are not waiting. If your company handles genomic data, biological research, or connected health systems, the time to act is now.

Get in touch with our team to discuss how Sekurno can help you secure the digital infrastructure of biology.

About The Author

Demyd Maiornykov is a cybersecurity expert and co-founder & CEO of Sekurno, a globally recognised cybersecurity firm specializing in Penetration Testing, Application Security, and Cybersecurity Compliance. At Sekurno, we dedicate all our efforts to reducing risks to the highest extent, ensuring high-risk industries like HealthTech and FinTech stand resilient against any threat.