18th Century Diary

23&me leak

by

Thomas Coady
in

As of my last knowledge update in June 2024, 23andMe experienced a significant data breach in October 2023, where hackers accessed sensitive user information. Here’s what we know:

What Happened in the 23andMe Breach?

  1. Initial Hack (October 2023)
  • Attackers used credential stuffing (reusing passwords from other breaches) to access about 14,000 individual accounts.
  • From these accounts, they scraped genetic and ancestry data from millions more users (estimated 6.9 million affected) by exploiting 23andMe’s “DNA Relatives” feature.
  1. Data Leaked
  • Personal info: Names, birth years, ancestry reports, and genetic data.
  • Health-related data: Some users’ health predispositions based on genetics.
  • Family tree connections: Data from the “DNA Relatives” feature was exposed.
  1. How the Breach Spread
  • The hackers later sold the stolen data on cybercrime forums (e.g., BreachForums).
  • Some users reported targeted phishing attacks after the breach.

23andMe’s Response

  • Mandatory password resets and two-factor authentication (2FA) enforcement.
  • Denied a direct breach of their systems, blaming users for reused passwords.
  • Faced multiple lawsuits for allegedly inadequate security measures.

Is 23andMe Still Compromised?

  • The immediate breach was contained, but stolen data remains in the wild.
  • Future risks include phishing, identity theft, and misuse of genetic data (e.g., insurance discrimination if laws don’t protect users).

What Should You Do?

  1. Enable 2FA on your 23andMe account.
  2. Change passwords (use a unique, strong one).
  3. Monitor for phishing emails pretending to be from 23andMe.
  4. Check breach notifications (e.g., HaveIBeenPwned) to see if your data was leaked.
  5. Consider deleting your data from 23andMe if you’re concerned (they allow account deletion).

Long-Term Concerns

  • Genetic data is irreplaceable—once leaked, it can’t be changed.
  • Regulatory scrutiny may increase (e.g., FTC investigations).

Would you like help checking if your data was exposed? I can guide you on steps to protect yourself further.

WANT MORE of EVERYTHING?

Sign here to receive the latest posts on culture, food, health and fitness in a monthly digest.

We don’t spam! Read our privacy policy for more info.

Leave a Reply

Newsletter

LET’S KEEP IN TOUCH!

We’d love to keep you updated with our blog digests ????

Select list(s):

Categories

Tags








https://instagram.com/chocolatedetect
















					

						

								
	


	
		
Discover more from 18th Century Diary

		

		
		
Subscribe now to keep reading and get access to the full archive.

		

			

		

							

					

												

							
													

												

							
							
							
							
							
							
							
														
						

					

				

								

	

	

		
		
Continue reading