// UNCLASSIFIED // CLEARED FOR PUBLIC RELEASE //
FILE BRC-newsDTG 0600Z
Breach Record

23andMe

DISCLOSED 2025-11-26 · STOLEN CREDS · 6,900,000 RECORDS EXPOSED

23andMe experienced a data breach where genetic data of nearly 7 million users was stolen and sold on the dark web. The company is settling a class action lawsuit for up to $50 million. Affected individuals may claim up to $10,000 before the February 2026 deadline.

The record

What we know

Disclosed
2025-11-26
Attack vector
Stolen Creds
Sector
Biotechnology/Genetics
Country
US
Records exposed
6,900,000
Domain
23andme.com
Data classes exposed
genetic dataDNA data
Sources

Cited reporting

Similar vector · recent

Other stolen creds breaches on file

This page is the permanent ColdRecon entry for the 23andMe disclosure. It updates if new public reporting emerges. All tracked breaches →

23andMe just lived through this. Your next prospect doesn't have to.

ColdRecon turns every disclosed breach into a daily intelligence brief from the seller's seat — normalized to the factors that move a deal, written in the Handler's voice. Request clearance and the first lands tomorrow at 0600.

Request Clearance →