23andMe inherits lawsuit over 'disturbing' DNA data breach
California's attorney general is suing 23andMe over a significant data breach that occurred in 2023. The lawsuit alleges that the company failed to implement adequate security measures and misled customers about the breach's severity. The breach exposed sensitive information of millions, raising concerns about data protection and consumer trust.
- ▪The California AG claims 23andMe downplayed the severity of a 2023 data breach.
- ▪The breach involved a cybercriminal accessing details of nearly 7 million customers.
- ▪23andMe allegedly failed to implement basic security measures and did not mandate two-factor authentication.
Opening excerpt (first ~120 words) tap to expand
(function() { let windowUrl = window.location.href; windowUrl = windowUrl.substring(windowUrl.indexOf('?') + 1); let messageElement = document.querySelector('.shareableMessage'); if (windowUrl && windowUrl.includes('code') && windowUrl.includes('expires')) { messageElement.style.display = 'block'; } })(); Legal 23andMe inherits lawsuit over 'disturbing' DNA data breach California AG claims genetics biz downplayed 2023 mega-leak while paying ransom to attacker Connor Jones Connor Jones Cybersecurity reporter Published fri 29 May 2026 // 17:12 UTC The office of Rob Bonta, California's attorney general, is suing 23andMe for the data protection failings that led to the genetics company's disastrous 2023 breach.Bonta and his team claim [PDF] that 23andMe failed to implement adequate security…
Excerpt limited to ~120 words for fair-use compliance. The full article is at The Register.
Discussion
0 commentsMore from The Register
