A cyber attack may have compromised the sensitive personal and genetic information of millions of 23andMe users. Register your interest to stay informed and receive updates if this claim is taken forward by one of our partner law firms.
Join the Claim isn’t a law firm. We connect you with regulated UK firms that run group action claims. If one of our partner firms takes this case forward, we’ll share more details, including how to check your eligibility.
Some claims are regulated by the Financial Conduct Authority (FCA). This claim is not currently regulated by the FCA.
Register your interest
Overview
23andMe has experienced a huge privacy breach. Although the genetic testing company’s systems weren’t directly hacked, cyber-criminals managed to gain unauthorised access to approximately 14,000 individual accounts by using emails and passwords exposed in other data breaches.
Adding to the problem, 23andMe has a feature called ‘DNA Relatives’ that lets people automatically share data with other users if they are related in some way. The hackers took advantage of this feature to get even more sensitive information. In total, the criminals successfully accessed the private data of around seven million people.
We are monitoring the situation closely. Register your interest and we’ll keep you updated if one of our regulated UK partner law firms is able to take this claim forward.
23andMe – At a glance
Status
23andMe will pay
$30 million to settle US claim
People eligible
6.9 million globally
Take a moment to answer a few simple questions so we can understand your connection and keep you updated.
Share your details so we can keep you informed if any updates become available.
If a partner law firm takes this claim forward, we’ll let you know the next steps and how to join.
Hackers accessed the accounts of around 14,000 23andMe customers. To do this, the criminals used emails and passwords already made public in other breaches. The hackers then stole the personal data of 6.9 million customers by way of the DNA Relatives feature, which lets people share some of their data with 23andMe users they are genetically related to.
The stolen data included the person’s name, birth year, relationship labels, the percentage of DNA shared with relatives, ancestry reports and self-reported location.
Millions of people are affected by the 23andMe data breach, including many in the UK. 23andMe said it has written to all affected users. Register to stay updated and we’ll let you know if a partner law firm takes this claim forward.
A group action claim allows people affected by the same issue to take action together. This strength in numbers helps stand up to big organisations. Join the Claim helps connect people with law firms so these actions have a real impact.
November 2024
23andMe settled a $30,000,000 class action lawsuit in the US. The UK investigation is still ongoing.
June 2024
The UK’s data protection watchdog launched a joint investigation into the 23andMe data breach with its Canadian counterpart. The investigation will look at whether 23andMe had adequate safeguards to protect the highly sensitive information within its control.
Oct 2023
23andMe became aware of the breach when hackers advertised the stolen data on another notorious forum. 23andMe then wrote to customers to inform them of the data security incident.
Aug 2023
Criminals advertised the stolen 23andMe data on a hacking forum.
Apr to Sept 2023
Cybercriminals started breaking into 23andMe customer accounts.
We’ll provide more updates on this case as they happen.
If you used 23andMe, your data may have been exposed.
Register to stay updated and we’ll let you know if a partner law firm takes this claim forward.
We connect consumers with their legal dream teams to ensure they get the compensation and support they deserve.
Join the Claim is not a law firm. We connect individuals with top law firms for group action claims, and our service is free to use. While we may receive a fee from the law firms we introduce you to, this will not affect your costs or compensation. We are not responsible for the advice or services provided by these firms. Please note, nothing on this website is legal advice, and while we check claim eligibility, we cannot guarantee a law firm will accept a case.
Join the Claim is a trading name of Join the Claim Limited, authorised and regulated by the Financial Conduct Authority (FRN: 1053404). Registered in England and Wales, Company No: 16245278. Registered office: 32 Eyre Street, Sheffield, S1 4QZ.
© Join the Claim All Rights Reserved |
