In a concerning turn of events, the same hacker who previously leaked a significant amount of user data from the genetic testing company 23andMe has struck again. This time, the hacker, known by the pseudonym “Golem,” has released a new dataset containing records of a staggering four million users. This data was made public on the notorious cybercrime forum, BreachForums.
The Extent of the Leak
The newly leaked data appears to match known and public 23andMe user and genetic information. Golem has claimed that the dataset contains information predominantly from individuals in Great Britain. Intriguingly, the hacker also mentioned that the data includes information from “the wealthiest people living in the U.S. and Western Europe.”
23andMe’s Response
Upon being informed of the new leak, 23andMe spokesperson Andy Kill stated that the company was in the process of reviewing the data to verify its legitimacy. This incident follows a previous announcement by 23andMe on October 6, where they acknowledged that hackers had accessed some user data. The company attributed the breach to a technique known as credential stuffing, where hackers use combinations of usernames or emails and passwords from other data breaches.
In light of the breach, 23andMe has urged its users to change their passwords and has recommended the activation of multi-factor authentication. The company has also initiated an investigation with the assistance of third-party forensic experts.
The Bigger Picture
While the exact methods employed by the hackers remain uncertain, the incident underscores the vulnerabilities associated with reusing passwords and certain opt-in features. One such feature, DNA Relatives, could potentially allow hackers to access data from multiple users by compromising just one account.
The timeline of the breach suggests that the initial attack might have occurred several months ago. Evidence points to a hacker advertising a set of 23andMe user data on another cybercrime forum, Hydra, as early as August 11. This set of data seems to match some of the records leaked recently.
Despite the revelations, many questions remain unanswered. The full extent of the data leak is still unknown, and it remains to be seen how 23andMe will address the concerns of its vast user base.
Final Thoughts
The repeated breaches at 23andMe highlight the ever-present threats in the digital age. As cybercriminals become more sophisticated, companies and individuals alike must remain vigilant and proactive in safeguarding their data.
