23andMe: "Oh it's everyone else's fault, it's credential stuffing." But that's worse, right? You get how not having credential stuffing mitigations in your fucking gene registry is worse?
@3e3ce96c Wait wait wait and WHAT! 7 million customer datasets breached by credential stuffing 30 million users? This sounds off to me (actually rather like bullshit). I agree that too many people reuse passwords, but I doubt that ~25% of the users reuse passwords and their passwords are known from other breaches. This rather sounds like credential stuffing of a privileged account. This would also explain how it was possible to target specific ethnic groups