Illumina Inc. agreed to pay $9.8 million to resolve False Claims Act allegations that its genomic sequencing systems sold to federal agencies and healthcare providers contained known cybersecurity vulnerabilities that were not disclosed.

Illumina Inc. — $9.8M Cybersecurity False Claims Settlement

Outcome: Illumina Inc. agreed to pay $9.8 million to resolve False Claims Act allegations that its genomic sequencing systems sold to federal agencies and healthcare providers contained known cybersecurity vulnerabilities that were not disclosed.

Illumina Inc., headquartered in San Diego, California, is a major manufacturer of genomic sequencing systems used by clinical laboratories, research institutions, and federal agencies. The DOJ alleged that Illumina sold these systems with known cybersecurity vulnerabilities to government purchasers without disclosing the security risks, in violation of the False Claims Act.

The cybersecurity vulnerabilities in the genomic sequencing systems could potentially expose sensitive patient genomic data and compromise the integrity of laboratory results. Illumina agreed to pay $9.8 million to resolve the allegations.

This case represents an emerging enforcement frontier where the DOJ applies the False Claims Act to cybersecurity deficiencies in medical devices and laboratory equipment, signaling that vendors must proactively disclose and remediate vulnerabilities in systems sold to government-funded healthcare providers.

Primary Source: DOJ: Illumina Inc. to Pay $9.8M to Resolve False Claims Act Allegations Arising from Cybersecurity Vulnerabilities in Genomic Sequencing Systems