Comment on 23andMe Blames Users for Recent Data Breach as It's Hit With Dozens of Lawsuits
scytale@lemm.ee 10 months agoNot sure of this specific case, but typical brute force attacks are done locally on the database that was acquired from the breach, not on the site itself. This way lockouts aren’t an issue.
bamboo@lemmy.blahaj.zone 10 months ago
In this case it was a credential stuffing attack against the live login form on the website based on the information released.