First, over a million DNA profiles of GEDmatch have been disclosed. Next, the breach email addresses were used in a phishing attack on users of the MyHeritage genealogy site.
As a result of this violation, all user permissions were reset, making all profiles visible to all users. This was the case for about 3 hours. During this time, users who did not opt for law enforcement correspondence were available for law enforcement correspondence and, conversely, all law enforcement profiles were returned. visible to GEDmatch users.
If GEDmatch sounds familiar, it was the DNA database used to identify the Golden State Killer.
Check it out: DNA company ‘GEDmatch’ hacked in data breach
Tags: data breach, phishing, security