On Oct. 6, news broke that 23andMe, the genomics company that collects genetic material from thousands of people for ancestry and genetic predisposition tests, had a massive data breach. But as it turns out, the company’s servers were not hacked. Rather, hackers targeted hundreds of individual user accounts — allegedly those that had repeated passwords.… Read more »
Canada Research Chair in A.I. Law & Data Governance at McGill University Faculty of Law and affiliated fellow at the Yale Law School Information Society Project. Author of "The Privacy Fallacy: Harm and Power in the Information Economy"