Deep Specter Research has uncovered evidence of multiple sophisticated cyberattacks against 23andMe leading up to its 2023 data breach, including spear-phishing campaigns targeting customers and employees dating back to 2018. The attacks included “secure document” phishing emails in 2021 hosted on compromised domains, fake login pages designed to harvest credentials with detailed permission scopes for accessing genetic data, over 50 typo-squatting domains used for credential stuffing attacks, and info-stealer malware campaigns in 2022 that collected comprehensive user data while specifically targeting 23andMe credentials. The research reveals that 23andMe failed to implement adequate security controls including weak authentication, poor monitoring, and insecure data handling, creating avoidable risks that attackers systematically exploited over several years. Deep Specter Research emphasizes that the genomics and healthcare industries face continuous, sophisticated attacks from threat actors who are refining their methods to target additional companies across the sector, with evidence of these attacks found on publicly accessible threat intelligence platforms that cybersecurity professionals should actively monitor.