23andMe’s Mega Breach: DNA Testing Firm Fined £2.31M for Security Flop

The UK’s data watchdog has slapped 23andMe with a £2.31 million fine for a colossal data breach in 2023. Despite 23andMe’s attempts to patch things up, the damage was done, with millions of users’ genetic info exposed. It seems their security measures were about as strong as wet tissue paper.

3P
Published: June 17, 2025 2:43 pmAdded: June 17, 2025 at 8:07 amAssembled by: The Editor
Pro Dashboard

Hot Take:

Who knew ancestry could lead to a “whoops, we lost your data” moment? 23andMe just learned the hard way that DNA testing isn’t all about learning you’re 2% Viking; it’s also about ensuring your genetic secrets don’t end up on Reddit. With a fine that might leave their piggy bank as empty as their security measures, one could say 23andMe needs a genetic upgrade for their cybersecurity DNA!

Key Points:

  • 23andMe fined £2.31 million by the UK’s ICO for a massive data breach exposing user data.
  • Security flaws included weak authentication measures and poor monitoring of data threats.
  • The breach affected nearly 7 million users due to the DNA Relatives feature.
  • The fine was reduced from an initial proposal of £4.59 million after 23andMe’s representations.
  • 23andMe has filed for Chapter 11 bankruptcy while improving security measures post-breach.

Membership Required

 You must be a member to access this content.

View Membership Levels
Already a member? Log in here
The Nimble Nerd
powered by the NSA, er,  GDPR Cookie Compliance
Confessional Booth of Our Digital Sins

Okay, deep breath, let's get this over with. In the grand act of digital self-sabotage, we've littered this site with cookies. Yep, we did that. Why? So your highness can have a 'premium' experience or whatever. These traitorous cookies hide in your browser, eagerly waiting to welcome you back like a guilty dog that's just chewed your favorite shoe. And, if that's not enough, they also tattle on which parts of our sad little corner of the web you obsess over. Feels dirty, doesn't it?