DNA testing service: 23andMe investigates data theft

[{"selector":"#anim-20b562aa-be52-43ea-8193-fa0139cf2e74 [data-leaf-element=\"true\"]","keyframes":{"transform":["translate3d(-32.70089275146508%, 0, 0) translate(-25%, 0%) scale(1.5)","translate3d(0%, 0, 0) translate(0%, 0%) scale(1)"]},"delay":0,"duration":2000,"fill":"forwards"}] The DNA testing company 23andMe is investigating whether a large trove of customer data was stolen from the company after information about the firm’s clients was offered for sale on a cybercrime forum earlier this week.

[{"selector":"#anim-b291c547-d27d-484d-a101-b24e558d034d [data-leaf-element=\"true\"]","keyframes":{"transform":["translate(0%, 0%) scale(1.5)","translate(0%, 0%) scale(1)"]},"delay":0,"duration":2000,"easing":"cubic-bezier(.3,0,.55,1)","fill":"forwards"}] On Sunday, a post on a popular forum where stolen data is traded and sold claimed to have “the most valuable data you’ll ever see” and posted a link to a sample of what was described as “20 million pieces of data” from 23andMe.

[{"selector":"#anim-a0a6962c-6df8-491a-a3d4-198ddd225bf2 [data-leaf-element=\"true\"]","keyframes":{"transform":["translate3d(-31.268527554322347%, 0, 0) translate(-25%, 0%) scale(1.5)","translate3d(0%, 0, 0) translate(0%, 0%) scale(1)"]},"delay":0,"duration":2000,"fill":"forwards"}] In a statement to CyberScoop on Thursday, 23andMe said it was made aware that “certain 23andMe customer profile information was compiled through unauthorized access to individual 23andMe.com accounts” but that there is no “indication at this time that there has been a data security incident within our systems.”

[{"selector":"#anim-871100fc-267a-4c0d-8ea2-014d25003fdb [data-leaf-element=\"true\"]","keyframes":{"transform":["translate(0%, 0%) scale(1.5)","translate(0%, 0%) scale(1)"]},"delay":0,"duration":2000,"easing":"cubic-bezier(.3,0,.55,1)","fill":"forwards"}] The company said its preliminary investigation indicated that an attacker may have compiled login credentials leaked from other platforms and then recycled these credentials to access the accounts of 23andMe customers who had used the same username and password combination.

[{"selector":"#anim-48fc019a-673b-4df5-b1cd-db837ad64613 [data-leaf-element=\"true\"]","keyframes":{"transform":["translate3d(-28.89160143441506%, 0, 0) translate(-25%, 0%) scale(1.5)","translate3d(0%, 0, 0) translate(0%, 0%) scale(1)"]},"delay":0,"duration":2000,"fill":"forwards"}] For accounts that had opted in to 23andMe’s “DNA Relatives” service — which allows users to “find and connect with genetic relatives and learn more about your family” — the attacker was able to scrape data associated with potential relatives, company officials told CyberScoop.

[{"selector":"#anim-f23c51ab-3b85-476d-af34-5d449e140cc9 [data-leaf-element=\"true\"]","keyframes":{"transform":["translate3d(68.35588681346836%, 0, 0) translate(25%, 0%) scale(1.5)","translate3d(0%, 0, 0) translate(0%, 0%) scale(1)"]},"delay":0,"duration":2000,"fill":"forwards"}] The officials said the information obtained may have included users’ display name, profile photo, profile sex, birth year, location, predicted relationships to their match, the percent DNA match and number of shared genetic segments and portions of their genetic ancestry results, including haplogroups, which provide information about ancestry.

For more such interesting stuff, click on the link given below

[{"selector":"#anim-daa4ad7c-f0ce-4c70-b3f6-bd5a40562a24 [data-leaf-element=\"true\"]","keyframes":{"transform":["translate(0%, 0%) scale(1.5)","translate(0%, 0%) scale(1)"]},"delay":0,"duration":2000,"easing":"cubic-bezier(.3,0,.55,1)","fill":"forwards"}] SWIPE UP