• Aquila
    link
    fedilink
    English
    arrow-up
    1
    arrow-down
    1
    ·
    11 months ago

    That’s still on 23andme for not enforcing stricter password requirements

    • rdyoung@lemmy.world
      link
      fedilink
      English
      arrow-up
      2
      ·
      edit-2
      11 months ago

      You can have the strictest requirements and people will still use that same password elsewhere. That’s where these credentials came from for the attack, leaks from other attacks.

      Yes, there is more that 23andMe should have done to mitigate an attack, but, this is also on the end user not being smarter about this.