DNA Tester 23andMe experienced a credential stuffing campaign, resulting in threat actors accessing customer profile information. The breach was not due to the company's network, but rather poor password management by customers. Hackers gained access to initial accounts and scraped data from users registered with the DNA Relatives feature. The compromised data includes names, usernames, profile photos, gender, date of birth, location, and ancestry results. #23andMe #DataBreach #CredentialStuffing

https://www.infosecurity-magazine.com/news/dna-tester-23andme-credential/