23andMe Data Breach - Hackers Targeted Jewish and Chinese Users Data

Rhea-AI Summary

23andMe (NASDAQ:ME) experienced a data breach in December 2023, impacting around 7 million users. Hackers targeted the genetic information of Jewish and Chinese customers, selling it on the dark web. Despite knowing the specifics, 23andMe did not inform affected customers about their personal data being compromised. This resulted in significant safety concerns, especially for Jewish and Chinese users. A class-action lawsuit has been filed against the company, accusing it of negligence and failing to protect user data. The law firm Levi & Korsinsky is investigating potential compensation for affected users.

Positive

• Levi & Korsinsky is proactively seeking compensation for affected customers, potentially leading to financial redress for victims.
• The breach has brought attention to the importance of data security and may prompt stronger future safeguards.

Negative

• 7 million users' data were compromised, causing serious privacy and safety concerns.
• Targeted exploitation of Jewish and Chinese users' data exacerbates ethnic and political tensions.
• 23andMe delayed disclosure of the breach, eroding trust among users and investors.
• Data was sold on the dark web, leading to potential misuse and identity theft.
• Class-action lawsuit against 23andMe may result in significant legal costs and damages.

Insights

Cybersecurity Expert

The recent data breach at 23andMe raises several critical issues for investors, primarily focusing on cybersecurity measures and the repercussions of inadequate data protection. When a company handles sensitive genetic information, it has a significant responsibility to safeguard that data. The breach, affecting 7 million users, underlines a potentially severe vulnerability in 23andMe's security infrastructure. This incident not only compromises personal data but also erodes customer trust, which is vital for a service based on personal health information.

From an investor's perspective, the company's response to the breach and its future cybersecurity strategies will be paramount. The delay in reporting the breach and the lack of transparency regarding the specifics—such as the targeting of Jewish and Chinese users—can result in reputational damage and loss of customer base. There might also be regulatory repercussions, given the increasing stringency of data protection laws worldwide. Investors should closely monitor how 23andMe plans to enhance its cybersecurity framework and its communication strategies to rebuild trust.

Legal Expert

The legal implications of this data breach are substantial. The class-action complaint filed against 23andMe highlights potential lapses in the company's legal obligations to protect user data and disclose the full extent of the breach in a timely manner. The targeting of specific ethnic groups such as Jewish and Chinese individuals magnifies the issue, potentially opening the company to lawsuits alleging discrimination or violation of privacy rights.

For investors, this represents a significant risk in terms of potential financial liabilities stemming from legal settlements and increased scrutiny from regulatory bodies. The costs associated with defending against such lawsuits and possible fines could adversely affect the company’s financial health. It is also worth noting that prolonged negative media coverage and legal battles could further erode customer trust and investor confidence.

Market Research Analyst

The impact of the 23andMe data breach on the market can be significant, particularly in the realm of consumer trust and brand reputation. The breach and subsequent mishandling of information disclosure may lead to a decline in new customer acquisitions and retention of existing customers. Genetic testing companies rely heavily on trust and any breach of that trust can lead to a swift and substantial impact on the market position.

In the short term, we can expect a potential drop in 23andMe's stock price as investors react to the news. Long-term effects could include increased customer acquisition costs as the company may need to invest heavily in marketing to regain lost trust. Additionally, competitors in the genetic testing market may capitalize on 23andMe's difficulties, potentially gaining market share. Investors should watch for any shifts in customer sentiment and market dynamics in the coming quarters.

NEW YORK, NY / ACCESSWIRE / June 7, 2024 / 23andMe (NASDAQ:ME) was hacked in December 2023, affecting approximately 7 million users of its genetic services website. According to a recently filed class complaint, hackers who infiltrated 23andMe's system were after the personal information of Jewish and Chinese customers, but the company hid that detail when notifying affected customers.

The hackers specifically targeted the personal genetic information of Jewish and Chinese customers and compiled that data - including genetic heritage, names, and addresses - into lists that were then sold on the dark web, but 23andMe concealed both those revelations when it announced the extent of the breach in December 2023.

According to the lawsuit, the hacker leaked a list of over 1 million Jewish customers expressly in retribution for the Israel-Hamas war. The hacker was also more than happy to leak a list of 350,000 Chinese customers upon request from a user with the alias "Wuhan."These lists generated a huge amount of interest from hackers on the dark web from all over the world and were shared and reshared an untold number of times.

The disclosure of these lists threatens the safety of those customers, including from the Chinese government, which has a long history of tracking Chinese citizens.

According to the lawsuit,to this day, 23andMe has not informed the 7 million compromised customers that their personal genetic information was disclosed on the dark web, nor has it told its Jewish and Chinese customers that they were specifically targeted.

IF YOU ARE A VULNERABLE person whose personal genetic information identifies you as having Ashkenazi Jewish heritage or Chinese ancestry, and/or live in California, Illinois, Oregon, or Alaska, please contact us to review your rights and eligibility for compensation:

https://bit.ly/3sYm8Cn

ADDITIONAL BACKGROUND:

According to a recently filed class action complaint, on Oct. 1, 2023, a hacker using the alias "Golem" leaked the 23andMe data of 1 million Ashkenazi Jews on Breach Forums, calling it "the most valuable data you'll ever see."

"Golem's explicit targeting of Jewish 23andMe users is further conveyed by his use of the character 'Gollum' from The Lord of the Rings - a creature driven by greed with ugly and outsized facial features - as his profile picture."

A few hours later, a user with the alias "Wuhan" asked Golem if he had "Chinese accounts," according to the complaint. The next day, Golem leaked the data of 7 million users, saying in the post that the customer information included phenotype and health information, photos, and identification data.

Golem listed prices for the customer profiles at $1,000 for 100 profiles, $5,000 for 1,000 profiles, $20,000 for 10,000 profiles and $100,000 for 100,000 profiles.

Interest in the leaked Jewish and Chinese information was immediate and overwhelming following an Israeli bombing of a Palestinian hospital.

23andMe attempted to shift the blame to customers, telling them the breach was a result of customers using recycled login credentials from their accounts on other websites.Further, 23andMe then waited until December to report that 7 million customers were directly affected by the breach and didn't say anything about the data being sold on the dark web or that Jewish and Chinese customers were specifically targeted.

Levi Korsinsky, LLP is investigating whether affected customers are entitled to compensation. If you have received a notice about the data breach, you may be entitled to compensation. There is no cost or obligation to participate. Follow the link below to find out more:

https://bit.ly/3sYm8Cn

Levi & Korsinsky is a nationally recognized consumer advocacy law firm that has recovered hundreds of millions of dollars against large corporations. The firm's team of over 70 extraordinary attorneys and professionals have a winning track record going against the most powerful defense attorneys in the world and know how to maximize your compensation. The firm is a 100% contingency firm - we don't get paid unless you get paid! Please visit us as www.zlk.com for more information. Attorney Advertising. Prior results do not guarantee similar outcomes.

CONTACT:
Levi & Korsinsky, LLP
Joseph E. Levi, Esq.
Ed Korsinsky, Esq.
33 Whitehall Street, 17th Floor
New York, NY 10004
jlevi@levikorsinsky.com
Tel: (212) 363-7500
Fax: (212) 363-7171
https://zlk.com/

SOURCE: Levi & Korsinsky, LLP

View the original press release on accesswire.com

FAQ

What was the extent of the 23andMe data breach in December 2023?

The breach affected approximately 7 million users, with hackers targeting the genetic and personal information of Jewish and Chinese customers.

Which users were specifically targeted in the 23andMe data breach?

Hackers targeted Jewish and Chinese customers, selling their genetic information on the dark web.

What actions have been taken following the 23andMe data breach?

A class-action lawsuit has been filed, and law firm Levi & Korsinsky is investigating compensation for affected users.

How did 23andMe respond to the data breach?

23andMe delayed informing customers of the specific targeting and data sale on the dark web, which has led to significant criticism and a class-action lawsuit.

What are the potential impacts of the 23andMe data breach on its stock (ME)?

The breach could lead to decreased user trust, potential legal costs, and financial damages, negatively affecting stock performance.