Hacked: 23 and Me 6.9 million accounts effected

23andMe-kit

Important Takeaways:

  • In some cases this included family trees, birth years and geographic locations, the company said.
  • After weeks of speculation the firm has put a number on the breach, with more than half of its customers affected.
  • The stolen data does not include DNA records.
  • 23andMe is a giant of the growing ancestor-tracing industry. It offers genetic testing from DNA, with ancestry breakdown and personalized health insights.
  • The biotechnology company, which is based in South San Francisco, was not hacked itself but cyber-criminals logged into about 14,000 individual accounts, or 0.1% of customers, by using email and password details previously exposed in other hacks.
  • As was first reported by Tech Crunch, the company has acknowledged that by accessing those accounts, hackers were then able to find their way into “a significant number of files containing profile information about other users’ ancestry”.
  • The criminals downloaded not just the data from those accounts but the private information of all other users they had links to across the sprawling family trees on the website.
  • The stolen data includes information like names, how each person is linked and in some cases birth years, locations, pictures, addresses and the percentage of DNA shared with relatives

Read the original article by clicking here.