DNA Analysis Company “23andMe” To Data Breach Victims . . . It’s Your Fault!

Posted on January 9, 2024 by fromthefirstorder

DNA Analysis Company “23andMe” To Data Breach Victims . . . It’s Your Fault!

Posted By: SpaceCommando [Send E-Mail]
Date: Tuesday, 9-Jan-2024 15:47:15
http://www.rumormill.news/234837

As droves of pissed off customers attempt to sue the genomics giant, it’s disavowing responsibility and turning the blame back on them.By Lucas Ropek – January 3, 2024What happens when a company loses a bunch of user data? Typically, they apologize and sheepishly beg for forgiveness. Not so with 23andMe. The popular genomics company, which suffered a pretty terrible data breach last year, has instead opted to tell pissed off customers that they probably should’ve picked a better password if they didn’t want their data boosted.To clarify, 23andMe is currently being sued—or, more accurately, legally attacked—by a large number of people due to the fact that droves of user accounts were compromised by cybercriminals last year. News of the breach originally broke in October, when customer data was posted for sale on the dark web. At that point, 23andMe told the public that only about 14,000 accounts had been compromised. However, later investigation revealed that, due to an internal data-sharing feature linked to those accounts, the real number of impacted people was probably something like 6.9 million.So, yeah, people are naturally pretty pissed and, as a result, are trying to sue the company. The keyword here is “trying” because, due to some controversial inclusions in 23andMe’s terms of service agreement, mass litigation (like a class-action lawsuit) is quite difficult to achieve. Instead, the company’s TOS stipulates that users must forego the opportunity to sue the company and instead try their hand at “forced arbitration,” an alternative legal pathway that experts contend is heavily weighted in favor of corporations. Still, a number of class-action lawsuits have been filed against the company, apparently in an attempt to override its original agreement.Humorously enough, not only is 23andMe opting to stay out of court, but it also seems to be denying it was the primary wrongdoer in the data breach. Case in point: On Wednesday, TechCrunch reported on a letter that the genomics company had sent to the law offices of one of the firms handling a lawsuit against it, Tycko & Zavareei LLP, in which it seemed to deny wrongdoing and, in some instances, pointed the finger back at impacted customers. The letter, which was sent to the law firm’s offices, says, in one such passage:“…users negligently recycled and failed to update their passwords following these past security incidents, which are unrelated to 23andMe…Therefore, the incident was not a result of 23andMe’s alleged failure to maintain reasonable security measures…”In other words, 23andMe appears to be saying . . .[SNIP]

CLICK THIS LINK TO READ THE REST OF THE ARTICLE

https://www.rumormillnews.com/cgi-bin/forum.cgi?read=234837

This entry was posted in Uncategorized. Bookmark the permalink.

Leave a comment