23andMe, a genetic testing tool that was hacked, is blaming its users.
It has become clear that
23andMe tells victims it's their fault that their data was breached | TechCrunch
https://techcrunch.com/2024/01/03/23andme-tells-victims-its-their-fault-that-their-data-was-breached/
23andMe, a genetic testing tool, reported that genetic data of 6.9 million people was leaked due to hacking. The number of 6.9 million people seems to be almost half of all 23andMe users.
Genetic testing tool 23andMe has genetic data of 6.9 million people stolen by hacking - GIGAZINE
23andMe has since changed its terms of service to make it more difficult for hacked customers to file class action lawsuits. However, 23andMe has been filed more than 30 lawsuits by victims of data breaches caused by hacking.
23andMe, a genetic testing tool damaged by hacking, suddenly updates its terms of service, prohibiting customers from filing class action lawsuits - GIGAZINE
Hassan Savary, one of the lawyers representing victims of data breaches caused by such hacking, said that 23andMe explained the company's stance on lawsuits. Savary told foreign media outlet TechCrunch: ``Rather than admit responsibility for the data security disaster, 23andMe appears to have decided to downplay the seriousness of these events and abandon its customers.'' I spoke.
23andMe told the group of users filing the lawsuit: 'After past security incidents, users inadvertently recycled their passwords and did not update them. This has nothing to do with 23andMe. Therefore, this security incident 'This did not occur because 23andMe failed to take reasonable security measures,' and explained that the company was not responsible for the data breach.
In response, Savary said: '23andMe is shamelessly blaming the victims of data breaches. This is nonsense. 23andMe knows that many consumers are using reused passwords. Given that 23andMe stores personally identifiable information, health information, and genetic information on its platform, it is important to note that 23andMe has safeguards in place to protect data from credential stuffing attacks. This is clearly something that needs to be implemented,'' he said, criticizing 23andMe.
Additionally, Savary said, 'This data breach affected millions of consumers whose data was compromised through 23andMe's DNA Relatives feature. However, only a small number of these accounts had their data compromised due to credential stuffing attacks. Only a few thousand cases. 23andMe's attempt to escape responsibility by blaming its customers does not help the millions of consumers whose data was breached through no fault of their own. 'I don't think so,' he said, criticizing 23andMe's response.
In response to 23andMe's response, one of the victims, Dante Termohs, said, ``It's scary that 23andMe is trying to hide the results instead of helping its customers.''
23andMe also stated that 23andMe cannot use data leaked information for any nefarious purposes. information. This is information that is only shared if you actively choose to share it with others via the DNA Relatives feature. Any information that an attacker may obtain could cause financial harm. 'There is no possibility that the data was used for malicious purposes because the data leaked information does not include social security numbers, driver's license numbers, payment information, financial information, etc.' He insisted that there would be no such thing.
Related Posts:
in Security, Posted by logu_ii