this post was submitted on 01 Nov 2023
440 points (99.3% liked)
Technology
60073 readers
3591 users here now
This is a most excellent place for technology news and articles.
Our Rules
- Follow the lemmy.world rules.
- Only tech related content.
- Be excellent to each another!
- Mod approved content bots can post up to 10 articles per day.
- Threads asking for personal tech support may be deleted.
- Politics threads may be removed.
- No memes allowed as posts, OK to post as comments.
- Only approved bots from the list below, to ask if your bot can be added please contact us.
- Check for duplicates before posting, duplicates may be removed
Approved Bots
founded 2 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
Shocking, company not caring about their customers.
who's not caring? They ask for consent
True, but I think the shady thing is that the data transmission is framed as “Research Participation” - which sounds a lot better than “allow us to sell your data to other companies and institutions.”
It's understandable they phrase it like that when themselves are the main consumer of this data for their own research. I fail to see any shady behavior from their part here whatsoever. Regarding 23andMe, I'm vastly more concerned with the data leak episode they had recently and what they're doing to prevent a future episode like this.
It wasn't a data leak. It was an authorization incursion brought on by users using the same username/email and password combo on other sites that had been compromised. If people don't have 2FA enabled for these accounts, then it's on them. There's literally nothing that 23andme can do about a situation like that when unauthorized users have both the email and password for an account without 2FA. They might have been able to force 2FA on accounts but it's too late for that when other accounts are compromised.
ah that's right, my bad. I remember not being sure if the credential reuse thing was 23andMe trying to downplay the attack, but it seems to really be the case. Not much to worry then.