Menu

MyHeritage Account Data Compromised in “Cybersecurity Incident”

A security researcher found the email addresses and encrypted passwords of more than 92 million users of the genealogy site on a private server outside the company.

Jun 6, 2018
Catherine Offord

ISTOCK, FATIDOThe account information of more than 92 million users of online genealogy platform MyHeritage has been compromised, according to a statement released by the company on Monday (June 4). Last October, in what the statement calls a “cybersecurity incident,” email addresses and encrypted password information were leaked from the company’s website by unknown actors.

The breach was first brought to the company’s attention by a security researcher, who discovered a file called “myheritage” on a private server, according to the statement. “Our Information Security Team received the file from the security researcher, reviewed it, and confirmed that its contents originated from MyHeritage and included all the email addresses of users who signed up to MyHeritage up to October 26, 2017, and their hashed passwords.”

The statement notes that there is “no reason to believe” that other information—such as credit card numbers (which are not stored by MyHeritage) or DNA data (which are stored on separate MyHeritage systems)—has been affected. Other genealogy platforms such as 23andMe take a similar approach to distributing information, keeping email and password information separate from genetic data.

Laura Hercher, who teaches about genetics and ethics at Sarah Lawrence College, tells STAT News that, while it’s unclear how this information or even DNA data themselves might be used, “when you put DNA and privacy together in a sentence, understandably and correctly, it makes people nervous.” Although, she adds, “I would rather give someone my DNA than my social security number, my search history, or my credit card.”

Harvard Medical School’s Robert Green, speaking to Science News before word of the breach at MyHeritage had spread, notes that there’s an inherent risk with storing personal information online. Following high-profile security breaches at large companies including Equifax and Facebook, “there’s an ongoing, slow-motion realization that there are so many avenues where our privacy can be compromised,” he says.

MyHeritage recommends in the statement that users change their passwords for “maximum safety,” and notes that the company is undertaking its own investigation of the incident.

January 2019

Cannabis on Board

Research suggests ill effects of cannabinoids in the womb

Marketplace

Sponsored Product Updates

FORMULATRIX® digital PCR technology to be acquired by QIAGEN
FORMULATRIX® digital PCR technology to be acquired by QIAGEN
FORMULATRIX has announced that their digital PCR assets, including the CONSTELLATION® series of instruments, is being acquired by QIAGEN N.V. (NYSE: QGEN, Frankfurt Stock Exchange: QIA) for up to $260 million ($125 million upfront payment and $135 million of milestones).  QIAGEN has announced plans for a global launch in 2020 of a new series of digital PCR platforms that utilize the advanced dPCR technology developed by FORMULATRIX combined with QIAGEN’s expertise in assay development and automation.
Application of CRISPR/Cas to the Generation of Genetically Engineered Mice
Application of CRISPR/Cas to the Generation of Genetically Engineered Mice
With this application note from Taconic, learn about the power that the CRISPR/Cas system has to revolutionize the field of custom mouse model generation!
Translational Models of Obesity, Dysmetabolism, Diabetes, and Complications
Translational Models of Obesity, Dysmetabolism, Diabetes, and Complications
This webinar, from Crown Bioscience, presents a unique continuum of translational dysmetabolic platforms that more closely mimic human disease. Learn about using next-generation rodent and spontaneously diabetic non-human primate models to accurately model human-relevant disease progression and complications related to obesity and diabetes here!
BiochemAR: an augmented reality app for easy visualization of virtual 3D molecular models
BiochemAR: an augmented reality app for easy visualization of virtual 3D molecular models
Have you played Pokemon Go? Then you've used Augmented Reality (AR) technology! AR technology holds substantial promise and potential for providing a low-cost, easy to use digital platform for the manipulation of virtual 3D objects, including 3D models of biological macromolecules.