{"id":1834,"date":"2023-10-06T17:35:00","date_gmt":"2023-10-06T17:35:00","guid":{"rendered":"https:\/\/www.darkreading.com\/attacks-breaches\/23andme-cyberbreach-exposed-dna-data-family-ties"},"modified":"2023-10-06T17:35:00","modified_gmt":"2023-10-06T17:35:00","slug":"23andme-cyberbreach-exposes-dna-data-potential-family-ties","status":"publish","type":"post","link":"https:\/\/ddi.mohflo.net\/index.php\/2023\/10\/06\/23andme-cyberbreach-exposes-dna-data-potential-family-ties\/","title":{"rendered":"23andMe Cyberbreach Exposes DNA Data, Potential Family Ties"},"content":{"rendered":"<p><img data-recalc-dims=\"1\" decoding=\"async\" src=\"https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2023\/10\/23andme-cyberbreach-exposes-dna-data-potential-family-ties.jpg?w=640&#038;ssl=1\"><\/p>\n<div><img data-recalc-dims=\"1\" decoding=\"async\" src=\"https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2023\/10\/23andme-cyberbreach-exposes-dna-data-potential-family-ties-1.jpg?w=640&#038;ssl=1\" class=\"ff-og-image-inserted\"><\/div>\n<div readability=\"50.218034993271\">\n<div readability=\"48.323014804845\">\n<p>23andMe, the popular DNA testing company, has launched an investigation after client information was listed for sale on a cybercrime forum this week.<\/p>\n<p>On Oct. 1, a post was published on the forum with a link to a sample of allegedly &#8220;<a href=\"https:\/\/cyberscoop.com\/23andme-user-data-theft\/?utm_content=266994582&amp;utm_medium=social&amp;utm_source=twitter&amp;hss_channel=tw-720664083767435264\" target=\"_blank\" rel=\"noopener\">20 million pieces of data<\/a>&#8221; from the genetic testing&nbsp;company, claiming that it was &#8220;the most valuable data you&#8217;ll ever see.&#8221; The first leak included 1 million lines of data, but on Oct. 4, the threat actor began offering bulk data profiles ranging from $1 to&nbsp;$10 per account in batches of 100, 1,000, 10,000, and 100,000 profiles.&nbsp;<\/p>\n<p>The information <a href=\"https:\/\/www.darkreading.com\/attacks-breaches\/2-5m-impacted-by-enzo-biochem-data-leak-after-ransomware-attack\" target=\"_blank\" rel=\"noopener\">leaked in the breach<\/a> includes names, usernames, profile photos, gender, birthdays, geographical location, and genetic ancestry results.&nbsp;<\/p>\n<p>23andMe has confirmed that the data is legitimate and stated that &#8220;the threat actors used exposed credentials from other breaches to access 23andMe accounts and steal the sensitive data,&#8221; meaning that recycled login credentials accessed from other cyber incidents were used to gain access to accounts with the DNA company.<\/p>\n<p>According to <a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/genetics-firm-23andme-says-user-data-stolen-in-credential-stuffing-attack\/\" target=\"_blank\" rel=\"noopener\">other reports of the breach<\/a>, many of the compromised accounts were those that had opted into the &#8220;DNA Relatives&#8221; feature available on the 23andMe platform. The threat actor accessed a limited number of accounts and &#8220;was able to scrape data associated with potential relatives,&#8221; company officials said.&nbsp;<\/p>\n<p>The scope of the <a href=\"https:\/\/www.darkreading.com\/attacks-breaches\/11m-hca-healthcare-patients-impacted-data-breach\" target=\"_blank\" rel=\"noopener\">breach<\/a> remains unclear, and it is unknown whether the threat actors have been in contact with 23andMe directly.<\/p>\n<\/div>\n<\/div>\n<div id=\"articleFooter-newsletterSignup\" readability=\"10.473404255319\">\n<p>Keep up with the latest cybersecurity threats, newly-discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.<\/p>\n<p><a class=\"subscribe-btn dr-btn\" href=\"https:\/\/darkreading.tradepub.com\/c\/pubRD.mpl?secure=1&amp;sr=pp&amp;_t=pp:&amp;qf=w_defa3135&amp;ch=dr_eoa\" title=\"Subscribe\" target=\"_blank\" rel=\"noreferrer noopener\">Subscribe<\/a><\/div>\n<p><a href=\"https:\/\/www.darkreading.com\/attacks-breaches\/23andme-cyberbreach-exposed-dna-data-family-ties\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>23andMe, the popular DNA testing company, has launched an investigation<\/p>\n","protected":false},"author":12,"featured_media":1835,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[1],"tags":[809],"class_list":["post-1834","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-uncategorized","tag-dark-reading"],"featured_image_urls":{"full":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2023\/10\/23andme-cyberbreach-exposes-dna-data-potential-family-ties.jpg?fit=342%2C343&ssl=1",342,343,false],"thumbnail":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2023\/10\/23andme-cyberbreach-exposes-dna-data-potential-family-ties.jpg?resize=150%2C150&ssl=1",150,150,true],"medium":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2023\/10\/23andme-cyberbreach-exposes-dna-data-potential-family-ties.jpg?fit=300%2C300&ssl=1",300,300,true],"medium_large":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2023\/10\/23andme-cyberbreach-exposes-dna-data-potential-family-ties.jpg?fit=342%2C343&ssl=1",342,343,true],"large":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2023\/10\/23andme-cyberbreach-exposes-dna-data-potential-family-ties.jpg?fit=342%2C343&ssl=1",342,343,true],"1536x1536":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2023\/10\/23andme-cyberbreach-exposes-dna-data-potential-family-ties.jpg?fit=342%2C343&ssl=1",342,343,true],"2048x2048":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2023\/10\/23andme-cyberbreach-exposes-dna-data-potential-family-ties.jpg?fit=342%2C343&ssl=1",342,343,true],"chromenews-featured":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2023\/10\/23andme-cyberbreach-exposes-dna-data-potential-family-ties.jpg?fit=342%2C343&ssl=1",342,343,true],"chromenews-large":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2023\/10\/23andme-cyberbreach-exposes-dna-data-potential-family-ties.jpg?resize=342%2C343&ssl=1",342,343,true],"chromenews-medium":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2023\/10\/23andme-cyberbreach-exposes-dna-data-potential-family-ties.jpg?resize=342%2C343&ssl=1",342,343,true]},"author_info":{"display_name":"Dark Reading","author_link":"https:\/\/ddi.mohflo.net\/index.php\/author\/darkreading\/"},"category_info":"<a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/uncategorized\/\" rel=\"category tag\">Uncategorized<\/a>","tag_info":"Uncategorized","comment_count":"0","jetpack_featured_media_url":"https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2023\/10\/23andme-cyberbreach-exposes-dna-data-potential-family-ties.jpg?fit=342%2C343&ssl=1","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts\/1834","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/users\/12"}],"replies":[{"embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/comments?post=1834"}],"version-history":[{"count":0,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts\/1834\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/media\/1835"}],"wp:attachment":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/media?parent=1834"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/categories?post=1834"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/tags?post=1834"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}