Media

• E-Commerce
• Investing
• Marketing and Advertising
• News and Media
• Business Services

Popular tags

• the
• to
• market
• united
• states
• united states
• states united
• llp
• announces
• global
• of
• stock
• earnings
• business
• stocks
• in
• call
• report
• data
• results

Keywords

2023-12-02 21:57:58| Engadget

An SEC filing has revealed more details on a data breach affecting 23andMe users that was disclosed earlier this fall. The company says its investigation found hackers were able to access information from 0.1 percent of its userbase, or the accounts of about 14,000 of its 14 million total customers, TechCrunch notes. On top of that, the attackers were able to exploit 23andMes opt-in DNA Relatives feature to access profile information about other users ancestry. 23andMe hasn't said how many of these users were affected. Hackers posted information from both groups online. When the breach was first revealed in October, the company said its investigation found that no genetic testing results have been leaked. According to the new filing, the data generally included ancestry information, and, for a subset of those accounts, health-related information based upon the users genetics. All of this was obtained through a credential-stuffing attack, in which hackers used login information from other, previously compromised websites to access those users accounts on other sites. In doing this, the filing says, the threat actor also accessed a significant number of files containing profile information about other users ancestry that such users chose to share when opting in to 23andMes DNA Relatives feature and posted certain information online. Engadget has reached out to 23andMe for comment. Following the discovery of the breach, 23andMe instructed affected users to change their passwords and later rolled out two-factor authentication for all of its customers. In another update on Friday, 23andMe said it had completed the investigation and is notifying everyone who was affected. The company also wrote in the filing that it believes that the threat actor activity is contained, and is working to have the publicly-posted information taken down.This article originally appeared on Engadget at https://www.engadget.com/23andme-hackers-accessed-ancestry-information-from-thousands-of-customers-and-their-dna-relatives-205758731.html?src=rss

Category: Marketing and Advertising

Latest from this category

13.12 A new AAA Alien game is reportedly in the works 13.12 Half-Life 3 is rumored to be a Steam Machine launch title and could arrive in spring 2026 13.12 iOS 26.2 is here with another Liquid Glass tweak, new Podcasts features and more 13.12 CRKD's Nitro Deck 2 works for both the Nintendo Switch and Switch 2 13.12 WWE Saturday Night's Main Event: How to watch John Cena's final match for free 12.12 Amazon pulls its bad AI video recaps after Fallout fallout 12.12 IKEA's new wireless charger is as cute as it is practical 12.12 Clair Obscur: Expedition 33 devs dropped a big update after sweeping The Game Awards Marketing and Advertising »

All news

14.12 Condo Adviser: Board has right to access units for insect abatement treatment 14.12 Train timetable revamp takes effect with more services promised 14.12 Ahead of Market: 10 things that will decide stock market action on Monday 14.12 Tories to scrap petrol car ban if they win next election 14.12 Heres whats next from the creator of the Pebble smartwatch 14.12 How 100-year-old firm went from Hull to Hollywood 14.12 Brixton Soup Kitchen prepares for busy Christmas 14.12 FPIs withdraw Rs 17,955 cr from Indian equities in Dec; total outflow at Rs 1.6 lakh cr in 2025 More »