23andMe: Profiles of 6.9 million people hacked

Original article here.

Hackers have been able to gain access to personal information from about 6.9 million users of genetic testing company 23andMe, using customers’ old passwords.

In some cases this included family trees, birth years and geographic locations, the company said.

After weeks of speculation the firm has put a number on the breach, with more than half of its customers affected.

The stolen data does not include DNA records.

23andMe is a giant of the growing ancestor-tracing industry. It offers genetic testing from DNA, with ancestry breakdown and personalised health insights.

The biotechnology company, which is based in South San Francisco, was not hacked itself but cyber-criminals logged into about 14,000 individual accounts, or 0.1% of customers, by using email and password details previously exposed in other hacks.

As was first reported by Tech Crunch, the company has acknowledged that by accessing those accounts, hackers were then able to find their way into “a significant number of files containing profile information about other users’ ancestry”.

The criminals downloaded not just the data from those accounts but the private information of all other users they had links to across the sprawling family trees on the website.

The stolen data includes information like names, how each person is linked and in some cases birth years, locations, pictures, addresses and the percentage of DNA shared with relatives.

As first reported by TechCrunch, the hackers were able to access the family tree profile information of about 1.4 million other customers participating in the DNA relatives feature, including display names and relationship labels.

One batch of data was advertised on a hacking forum as a list of people with Jewish ancestry, sparking concerns of targeted attacks.

But there is currently no evidence that any of the datasets being advertised have had any buyers or that they have been used by criminals.

Oz Alashe, CEO of CybSafe, a risk management platform, said that the data breach at 23andMe “emphasises the importance of improving cyber-security behaviours in the general population”.

“Poorly secured accounts, with weak passwords and no two-factor authentication, put all those sharing their sensitive data at risk,” he said.

23andMe said it was now telling all affected customers, as required by law. The firm will be forcing customers to change their passwords and improve their account security.

By Published On: December 5, 2023Categories: Uncategorized1 Comment on 23andMe: Profiles of 6.9 million people hacked

Share This Story, Choose Your Platform!

About the Author: Patriotman

Patriotman currently ekes out a survivalist lifestyle in a suburban northeastern state as best as he can. He has varied experience in political science, public policy, biological sciences, and higher education. Proudly Catholic and an Eagle Scout, he has no military experience and thus offers a relatable perspective for the average suburban prepper who is preparing for troubled times on the horizon with less than ideal teams and in less than ideal locations. Brushbeater Store Page: http://bit.ly/BrushbeaterStore

One Comment

  1. KBYN December 5, 2023 at 21:12

    People with no common sense give a soulless corporation the most private data possible, and then act surprised when the decision bites them in the ass.

    Fools.

Comments are closed.

Related Posts

Kamala Harris promoting communist principles in speech

July 26, 2024|0 Comments

CCP Bot Farms in the tank for Kamala

July 26, 2024|0 Comments

THE GUERRILLA’S GUIDE TO THE BAOFENG RADIO: #1 BESTSELLER IN COMMUNICATIONS

July 26, 2024|0 Comments

SABOTAGE IN FRANCE: MAP

July 26, 2024|0 Comments

GUNS N GEAR

Categories

Archives