🌻AOct 8, 2023
Caroline Orr Bueno

Genetic testing company 23AndMe confirmed that it suffered a data breach in what appears to be a targeted attack on Jews & Chinese people. Hackers have put up for sale 1 million data points about Ashkenazi Jews, plus hundreds of thousands of Chinese users.

The breach allegedly includes celebrities like Mark Zuckerberg, Elon Musk, and Sergey Brin. #cybersecurity #databreach #23andme
https://www.wired.com/story/23andme-credential-stuffing-data-stolen/

23andMe User Data Stolen in Targeted Attack on Ashkenazi Jews

At least a million data points from 23andMe accounts appear to have been exposed on BreachForums. While the scale of the campaign is unknown, 23andMe says it's working to verify the data.

WIRED
Oct 7, 2023 at 12:56amWeb
Show threadCaroline Orr BuenoOct 7, 2023

This follows several years of warnings about the potential vulnerabilities and risks associated with direct to consumer genetic testing companies like #23andme. In 2019, for example, the Pentagon sounded the alarm over home DNA kits, citing concerns that "outside parties are exploiting the use of genetic materials for questionable purposes," including mass surveillance & unauthorized tracking.

https://www.nbcnews.com/news/military/pentagon-tells-military-personnel-not-use-home-dna-kits-n1106761

Pentagon tells military personnel not to use at-home DNA kits

In a December 20 memo, two Pentagon officials said that DNA testing companies were targeting military personnel with discounts and other undisclosed incentives.

NBC News
Show threadJohn BreenOct 7, 2023
@rvawonk I was even horrified when my mom decided to use such a service, because now basically my DNA is in the system too, without my permission or any privacy controls or accountability.
Show threadBeatGroundsOct 7, 2023
@jab01701mid @rvawonk I used MyHeritage and they had an option to destroy your DNA sample after your test is done.
Show threadCodexNotFoundOct 7, 2023
@beatgrounds @jab01701mid @rvawonk destroy DNA sure, there is no reason for them to keep the DNA, but do they still have a digital copy?
Show threadSensible CroneOct 8, 2023
@rvawonk surprise surprise.
Show threadBishop WhitewindOct 7, 2023
@rvawonk of course they did
Show threadLAURENOct 7, 2023
@rvawonk JFC.
Show threadKanaMaunaOct 7, 2023
@rvawonk Followers of RFK Jr?
Show threadAvi Rappoport (avirr)Oct 7, 2023
@rvawonk It’s a metadata leak, not the genetic tests themselves, though all of us leaped to that conclusion #23andMe
Show threadHoward Chu @ SymasOct 7, 2023
@avirr @rvawonk ah, that's not quite as bad then. Otherwise I was waiting to hear about mysterious deaths due to unknown causes (that were actually due to genetically tailored toxins...)
Show threadSpinnyOct 8, 2023
@hyc @avirr @rvawonk I mean, I'm more concerned about someone putting together a database of 'secretly [insert ethnic group here]' people to attack.
Show threadPamela Barroway – Biz EditorOct 7, 2023
@rvawonk Holy shit.
Show threadJohnWOct 7, 2023

@rvawonk

So glad I never used 23 and me.

Show threadJanneOct 7, 2023

@the_Effekt @rvawonk but if one of your close relatives did, basically the same thing :/

I assume that several state actors already have access to my dna because of relatives (definitely took every test because racist, also actives at myheritage.com)

Show threadJohnWOct 7, 2023

@janvenetor @rvawonk

I was adopted. My entire past is, and has remained a mystery. 😉 So while it might be out there somewhere, it's a much harder path to get to me specifically.

Show threadJanneOct 7, 2023

@the_Effekt @rvawonk such a thin silver lining.

I very much expect not to commit serious crimes, or visit certain countries ever, the chances of taking the wrong escalator and brushing against someone who later visits a crime scene are a bit high for my liking :/

Edit: here's a finnish student indicted for a serious crime, based on DNA evidence, because they took the same escalator as someone visiting the crime scene: https://yle.fi/a/3-11811155

Viaton hipaisu liukuportaissa teki opiskelijasta vakavan rikoksen pääepäillyn: ”Mietin, olenko tulossa hulluksi, jos olenkin tehnyt sen?”

Suomessa on ihmisiä tuomittu oikeudessa pelkän dna-tunnisteen perusteella. Nykyään tiedetään, että niin ei pitäisi tehdä.

Yle Uutiset
Show threadJohnWOct 7, 2023
@janvenetor @rvawonk Ahh ok understood. I see where you're coming from now.
Show threadT KennedyOct 7, 2023
@rvawonk
I for one am shocked something like this would happen. Who could have seen this coming?
Show threadDubjOct 7, 2023
@rvawonk I feel like many people who give their D.N.A to these companies do not understand how bad of an idea it is to.
Show threadDoug Baker - Elbows Up! 🇨🇦Oct 7, 2023
@rvawonk Wow. Didn’t see that coming.
Show threadC0ppertopOct 7, 2023
@rvawonk those pesky Chinese hackers.
Show threadJohnWOct 7, 2023

@rvawonk

Is it out of the realm of possibility to consider something like an "intentional" data breach? Since genetic information is becoming more valuable, a company informing a group of hackers a weak point in security in exchange for having been paid off?

Show threaddon albertsonOct 8, 2023
@rvawonk The "threat actor" violated their terms of service. How low can they go?