As far as I know they’re completely unregulated in who they can sell your genetic info to, and they’re pretty lazy in terms of information security. So maybe your siblings both send of their info to them, they identify that your family is at a high risk for heart disease, and suddenly your private health insurance company wants to double their fees. Or, with my tinfoil hat on, maybe your family is identified as being a particular ethnic minority, and an authoritarian government gets voted in in a couple of decades who uses that info to round up people they don’t like. A bit far-fetched, but hopefully you get my point!

Well that and they happily provide DNA info to police whenever asked. To the point where they can find people through relatives. Like, if you have a shithead cousin who commits a crime, they can use your DNA to match his. And then the police have your DNA on file.

They completely underrepresented the scope of the breach… That is what puts them in the sketchy category

https://www.wired.com/story/23andme-breach-sec-update/

As I’m sure you know, the accounts that got credential stuffed also exposed the information of anyone that had shared data with them.

What’s more is these hacked accounts were used to friend and solicit other 23&Me users to share their data, expanding the amount of data collected well beyond the scope of just the accounts that got hacked.

I’m sure the nearly 7 million people who had their info stolen through the breach of just 14k accounts weren’t all stupid.