23andMe admits hackers stole raw genotype data - and that cyberattack went undetected for months | Firm says it didn’t realize customers were being hacked::Firm says it didn’t realize customers were being hacked

  • Nighed@sffa.community
    link
    fedilink
    English
    arrow-up
    7
    ·
    9 months ago

    This is the one that was from previously breached credentials right?

    So their only fault was not forcing (did they support?) 2FA. + Potentially not having brute force monitoring?

      • Nighed@sffa.community
        link
        fedilink
        English
        arrow-up
        2
        ·
        9 months ago

        Yeh, probably. But in this case they probably had only a few passwords per email, but lots of usernames to try. So per account blocks may not have worked as they had the correct passwords?