Genetic testing company 23andMe said Monday that hackers were able to access the data of about 6.9 million people, far more than the company previously acknowledged.

The finding is the result of an investigation 23andMe launched in October, after at least one list of people whom the site identified as having Ashkenazi Jewish ancestry was posted online.

  • voxel@sopuli.xyz
    link
    fedilink
    arrow-up
    7
    arrow-down
    3
    ·
    edit-2
    1 year ago

    because I’m pretty sure they need some of that data to be unencryped;
    records of related customers can improve accuracy drastically
    and they’re probably also probably selling it

    also this “hack” was done by just abusing built-in features (“dna relatives” system), not actually breaking any security.

    • Danny M@lemmy.escapebigtech.info
      link
      fedilink
      arrow-up
      4
      arrow-down
      2
      ·
      1 year ago

      because I’m pretty sure they need some of that data to be unencryped; records of related customers can improve accuracy drastically

      I don’t even think this should be a feature, but, if it has to, then they can have two versions of it, one that they use for training and improving the results and a user can only access their data from a frontend by decryping it (locally) with their key

      also this “hack” was done by just abusing built-in features (“dna relatives” system), not actually breaking any security.

      irrelevant. if you had a key pair no amount of password guessing would get them there