this post was submitted on 01 Nov 2023
440 points (99.3% liked)

Technology

59698 readers
2745 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
 

Drugmakers Are Set to Pay 23andMe Millions to Access Consumer DNA::GSK will pay the DNA testing company $20 million for non-exclusive access to genetic data.

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 1 points 1 year ago (1 children)

who's not caring? They ask for consent

[–] [email protected] 9 points 1 year ago (1 children)

True, but I think the shady thing is that the data transmission is framed as “Research Participation” - which sounds a lot better than “allow us to sell your data to other companies and institutions.”

[–] [email protected] -3 points 1 year ago (1 children)

It's understandable they phrase it like that when themselves are the main consumer of this data for their own research. I fail to see any shady behavior from their part here whatsoever. Regarding 23andMe, I'm vastly more concerned with the data leak episode they had recently and what they're doing to prevent a future episode like this.

[–] [email protected] 2 points 1 year ago (1 children)

It wasn't a data leak. It was an authorization incursion brought on by users using the same username/email and password combo on other sites that had been compromised. If people don't have 2FA enabled for these accounts, then it's on them. There's literally nothing that 23andme can do about a situation like that when unauthorized users have both the email and password for an account without 2FA. They might have been able to force 2FA on accounts but it's too late for that when other accounts are compromised.

[–] [email protected] 1 points 1 year ago

ah that's right, my bad. I remember not being sure if the credential reuse thing was 23andMe trying to downplay the attack, but it seems to really be the case. Not much to worry then.