In a concerning turn of events, the hacker known as Golem has once again targeted genetic testing giant 23andMe, leaking fresh user data on the infamous cybercrime forum BreachForums. This latest breach, exposed on Tuesday, involves the compromised records of a staggering four million users. Notably, the leaked dataset includes details of individuals from Great Britain and even the wealthiest residents of the United States and Western Europe, amplifying fears about the potential misuse of this sensitive information.
Despite 23andMe’s earlier efforts to address a breach on October 6, this recent leak has raised serious questions about the extent of the compromised data and the hacker’s motives. The breach has intensified concerns regarding cybersecurity practices within 23andMe, as the company grapples with the aftermath of these successive attacks.
Previously, 23andMe acknowledged a breach on October 6, attributing the infiltration to hackers employing credential stuffing techniques. In response, the company urged users to change passwords and enable multi-factor authentication. However, the extent of this breach remains shrouded in uncertainty, with key details such as the specific techniques used and the hackers’ ultimate objectives still unknown. This incident underscores the pressing need for enhanced data protection measures and robust cybersecurity protocols, not only for 23andMe but also for all organizations entrusted with sensitive user information in the digital age.
