23andMe's defense as regards data privacy laws is essentially to claim that a data breach did not actually occur, given that the incident stemmed from the failure of certain users to change passwords that had been exposed elsewhere.
SpyCloud found about 26 million Fortune 1000 employee credentials circulating on the dark web. Password reuse, weak passwords, and infostealers were responsible for the leaks.
New exposed credentials are growing steadily with an increase of 16.6% from last year while previously exposed information continues to recirculate within underground communities.
Information from 3.68 million leaked user accounts of Mobifriends dating app allow hackers to exploit password reuse problem and unlock a lot more accounts.