Unsecured WordPress Folder Exposes ChoiceDNA Records

October 1, 2024

(Adobe Stock)

Indiana-based genetic DNA testing and facial recognition service provider ChoiceDNA had nearly 8,000 files with sensitive biometric details of thousands of individuals, including newborns, exposed due to a WordPress folder that lacked any password protection, Hackread reports.

Included in the records stored in the unsecured WordPress folder named "Facial Recognition Uploads" were names, biometric images, phone numbers, racial or ethnic identities, email addresses, and reasons for facial DNA analysis, a report by cybersecurity researcher Jeremy Fowler published on vpnMentor showed.

While ChoiceDNA immediately secured the exposed WordPress folder upon notification, threat actors could leverage the leaked biometric and personally identifiable information to conduct social engineering and phishing attacks.

Individuals who have sought the services of ChoiceDNA have been urged to promptly replace their passwords with robust ones and leverage two-factor authentication, as well as be more vigilant of possible phishing attempts.

Sharon Florentine

Sharon is a master technology storyteller and editor with omnichannel experience: books and print magazines, digital, webcast, blogging, podcast, live events and video and associated brand-specific social media content. From 1999 to 2003, she acquired and edited technology books and certification exam prep guides.

After a year spent in publicity and editorial at mass-market book publishers, she returned to tech publishing and, since 2004, explored B2C and B2B news, issues and trends in consumer, lifestyle, software, software development, AI, ML, networks, big data, hardware, security, storage, cloud, equity, inclusion, diversity, women in tech, career development, IT management, H-1B visa issues and immigration, education, training and learning.

Her previous role was as the managing editor at Techstrong Group in charge of Cloud Native Now, DevOps.com, Security Boulevard and Techstrong ITSM and their brand-specific social media. She currently serves as editorial director for CyberRisk Alliance’s channel brands, ChannelE2E and MSSP Alert and acting editorial director for SC Media UK. Drop me a note and let’s talk!

MSP

Veeam’s new DataAI Command Platform connects data, access, identities, and AI

Todd R. WeissJune 1, 2026

Veeam’s new platform, built from its Securiti AI acquisition, gives partners a broader data resilience, governance and AI trust story as customers look for safer ways to scale agentic AI.

Multi-cloud management

Confluent Targets Real-Time AI Data Gaps

ChannelE2E TeamMay 19, 2026

MSP

HPE Brings Private Cloud, Data Protection, and AI Readiness Under GreenLake

Suparna Chawla BhasinMay 13, 2026

HPE is expanding GreenLake with new private cloud, storage, backup and data management updates as customers look for a more manageable way to modernize infrastructure and get data ready for AI.

Unsecured WordPress Folder Exposes ChoiceDNA Records

Related

Veeam’s new DataAI Command Platform connects data, access, identities, and AI

Confluent Targets Real-Time AI Data Gaps

HPE Brings Private Cloud, Data Protection, and AI Readiness Under GreenLake