this post was submitted on 08 Oct 2023
297 points (97.1% liked)

Technology

59207 readers
3264 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
 

User data stolen from genetic testing giant 23andMe is now for sale on the dark web::User data from 23andMe accounts has been leaked and put up for sale on a dark web forum after what appeared to be a "credential stuffing" cyberattack.

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 11 points 1 year ago* (last edited 1 year ago) (3 children)

probably cause they didn't invest much in cybersec..like most companies..and they deserve it, for not hiring such essential engineers

[–] [email protected] 14 points 1 year ago

They're not the ones with their genetic data for sale on the dark web though...

[–] [email protected] 8 points 1 year ago

Credential stuffing is, first and foremost, a user issue. There’s only so much you can do when people use the same password for all their different websites.

That being said, there are some “above and beyond” steps a platform can take and most companies definitely don’t.

[–] [email protected] 5 points 1 year ago

Yeah, this is a decades old ongoing issue with companies. They see pretty much anything IT related as a money sink that needs to be trimmed to the bare bones while giving salespeople absurd bonuses. Then they get all surprised pikachu faced when they get hacked or hit with ransomware and their last backup was 6 months ago when they let the IT department go without warning and hired some guys from overseas to handle it remotely.