• @douglasg14b@lemmy.world
    link
    fedilink
    English
    5
    edit-2
    11 months ago

    Why would you this wasn’t even a hack for my understanding?

    It was a password stuffing attack. Meaning that a bunch of users with reused crappy passwords had their accounts accessed with their legitimate passwords by attackers.

    I’m not sure why this reflects horribly on the company in a way that would encourage one to delete their account?

    This would be like leaving the key to your apartment in a public place and then complaining about your landlords terrible security when someone accesses your house when you’re not there.

    • Rentlar
      link
      fedilink
      English
      10
      edit-2
      11 months ago

      They stuffed passwords to get them access to information not just on the compromised accounts’ profiles but to detailed data on a large group of other people whose accounts weren’t compromised through a function within 23andMe’s database browser.