23andMe has been fined £2.31 million ($3.1 million) by UK regulators following a 2023 cyberattack that compromised users' genetic data. The UK Information Commissioner's Office, in conjunction with Canadian regulators, found that the company violated UK data-protection laws by failing to implement adequate authentication, security, and threat detection measures, marking another privacy setback for the DNA data bank.
23andMe has been fined £2.31 million ($3.1 million) by the UK Information Commissioner’s Office following a 2023 cyber attack that resulted in the exposure of users' genetic data, marking another significant privacy crisis for the company described as a 'troubled DNA data bank'. The investigation, conducted jointly with Canadian regulators, concluded that 23andMe violated UK data-protection laws by failing to implement appropriate customer authentication measures, secure access to raw genetic data, and establish adequate cyber threat detection and response protocols. The 'strongly negative' sentiment surrounding this development underscores the severity of these operational and compliance failures, which point to persistent vulnerabilities within the company's data security framework.
AI-powered research, real-time alerts, and portfolio analytics for institutional investors.
Request a DemoOverall Sentiment
strongly negative
Sentiment Score
-0.75
