California Attorney General Rob Bonta sued the company formerly known as 23andMe for failing to protect customer data during a 2023 breach. The breach exposed data for nearly 7 million people nationwide, including more than 850,000 Californians. Exposed information included raw genetic data and health reports. Bonta said hackers listed the data for sale on the dark web in 2023. A 2023 DOJ investigation found hackers operated inside 23andMe systems for five months without detection and that 23andMe began investigating only after dark-web sale listings. The complaint alleges the hackers used credential stuffing with weak or reused passwords and that 23andMe misled consumers and failed to take obvious safeguards. 23andMe filed for bankruptcy last year and was acquired by TTAM Research Institute, with the suit filed against Chrome Holding Co., a TTAM subsidiary and the corporate debtor name used during bankruptcy.
"“23andMe collected genetic data about millions of people, failed to meet its obligation under California law to keep that information safe, and then lied to consumers about the severity of its 2023 data breach,” Bonta said in a statement."
Read at Los Angeles Times
Unable to calculate read time
Collection
[
|
...
]