Tech »  Topic »  Privacy Regulators Probe Impact of 23andMe's Mega-Breach

Privacy Regulators Probe Impact of 23andMe's Mega-Breach

6.9 Million Individuals' Genetic Details Stolen via 2023 Credential-Stuffing Attack Mathew J. Schwartz (euroinfosec) • June 11, 2024

A credential-stuffing attack against 23andMe led to the theft of genetic data pertaining to 6.9 million users. (Image: Shutterstock)

Privacy regulators in the U.K. and Canada have launched a joint investigation into 23andMe following the direct-to-consumer genetic testing service suffering a massive data breach in October 2023.

See Also: Strategies for Protecting Your Organization from Within

Britain's Information Commissioner's Office, and the Office of the Privacy Commissioner of Canada, said they'll jointly investigate the publicly traded company's compliance with their respective data protection laws and the impact of the breach, which exposed ancestry information for 6.9 million individuals.

The ICO and OPC said they'll review the scope of information exposed and potential risk it poses to individuals, whether 23andMe had sufficient safeguards in place ...

Copyright of this story solely belongs to bankinfosecurity . To see the full text click HERE