In a recent security breach, a spokesperson for genetic testing company 23andMe confirmed that hackers have gained unauthorized access to nearly seven million user profiles. The compromised information includes users' ancestry reports, zip codes, and birth years. This incident, which was initially believed to have affected only a small number of accounts, has exposed far more users than previously reported.

According to a filing submitted by 23andMe to the Securities and Exchange Commission on Friday, approximately 14,000 user accounts, or 0.1% of the company's total, were breached by the hackers. However, the company now reveals that the hackers were able to breach approximately 5.5 million profiles utilizing the company's DNA Relatives feature. This feature allows users to find genetic relatives. Additionally, a subset of family tree information from around 1.4 million DNA Relatives profiles was accessed by the hackers, according to a statement from a 23andMe spokesperson.

Engadget, a prominent tech news outlet, first reported on the wider impact of the hack, shedding light on the scale of the breach. It is a concerning incident as it follows a trend of major US corporations falling victim to cyber attacks that affect a larger number of people than initially estimated.

The hackers behind this breach employed a technique called credential stuffing, where old usernames and passwords from other websites were reused to gain access to 23andMe user accounts. This rudimentary yet effective method underscores the importance of practicing strong password security and using unique login credentials across different platforms.

The 23andMe spokesperson, who chose to remain anonymous, did not provide any information on the identity of the hackers responsible for the breach. However, the company stated that it has completed an investigation with the assistance of third-party forensic experts. They are currently in the process of notifying affected customers, as required by law.

To enhance security measures and protect customer data in the future, 23andMe has implemented several preventive actions. This includes mandating a password reset for all existing customers and implementing two-step verification for both existing and new customers.

The incident serves as a solemn reminder to users of online platforms to prioritize cybersecurity and ensure their personal information remains protected. As genetic testing becomes increasingly popular, companies like 23andMe must remain vigilant and take proactive steps to safeguard the sensitive data entrusted to them.

(Note: This news article has been generated based on the information provided by the user and does not include any additional information beyond the scope of the provided text.)