Over 50% of 23andMe Customers Impacted by Data Breach

The DNA testing kit company 23andMe was targeted in a hack in October, which is now estimated to have exposed the personal information of about 6.9 million customers, a significant increase from the previously reported 14,000 individuals. The breach used compromised customer usernames and passwords to access sensitive personal information such as ancestry trees, birthdays, and general geographic locations. 23andMe stated that no genetic material or DNA records were exposed. The company is obligated to inform all impacted customers and has implemented two-step verification for user logins. The emphasis on account security follows an internal investigation, with expected expenses related to the hack estimated at $1 to $2 million. 23andMe also offers genetic health risk tests and has a research arm, raising concerns about data privacy and the company’s bottom line.