23andMe has confirmed to BleepingComputer that it is aware of user data from its platform circulating on hacker forums and attributes the leak to a credential-stuffing attack.
We desperately need data privacy laws like the EU. I think a lot of people are totally ignorant w/ respect to what bad actors (whether they’re hackers or private companies) can actually do with their data.
GDPR is honestly not that good, it’s a step in the right direction but it’s not even close to being a decent solution.
We should consider implementing penalties harsh enough to actually incentivize behavioral change. Ideally, we’d see a system where a failure to reform would result in fines doubling each subsequent month, ensuring that even a giant like Google feels the sting, otherwise nothing is gonna change.
We desperately need data privacy laws like the EU. I think a lot of people are totally ignorant w/ respect to what bad actors (whether they’re hackers or private companies) can actually do with their data.
GDPR is honestly not that good, it’s a step in the right direction but it’s not even close to being a decent solution.
We should consider implementing penalties harsh enough to actually incentivize behavioral change. Ideally, we’d see a system where a failure to reform would result in fines doubling each subsequent month, ensuring that even a giant like Google feels the sting, otherwise nothing is gonna change.