Fake Ancestry / 23andMe / MyHeritage DNA genetic data account suspended, locked, or data breach phishing — fraudulent email impersonating Ancestry, 23andMe, or MyHeritage claiming the recipient's DNA account has been suspended for suspicious activity, their genetic data and family tree are inaccessible, or a data breach has exposed their DNA results — directing them to sign in, verify identity, or secure their account through a credential-harvesting portal; Ancestry 3M+ paid subscribers; 23andMe 14M+ customers (company filed for bankruptcy in 2024, heightening user anxiety about genetic data security); MyHeritage 4M+; DNA genetic data is uniquely sensitive — it is permanent, irreplaceable, identifies biological relatives, and contains medical predisposition information; 23andMe 2023 breach exposed 6.9M profiles creating a persistent threat perception in this user base

Phishing emails impersonating Ancestry, 23andMe, MyHeritage, or other genealogy and DNA testing platforms claiming the recipient's DNA account has been suspended for suspicious activity, their genetic data and family tree are no longer accessible, or a data breach has exposed their DNA results — directing them to sign in, verify identity, or secure their account through a credential-harvesting portal. Key facts: (1) Genetic data is uniquely high-value and uniquely permanent: unlike passwords, credit card numbers, or even SSNs, DNA cannot be changed, revoked, or replaced — once stolen, it is stolen forever; Ancestry 3M+ paid subscribers; 23andMe 14M+ registered customers whose accounts contain raw DNA files, ethnicity breakdowns, health predisposition reports (BRCA variants, Alzheimer's risk, heart disease markers), and family matching information for biological relatives who never opted in; MyHeritage 4M+ subscribers with European genealogy focus; (2) The 23andMe bankruptcy created a persistent and justified threat perception: 23andMe filed for Chapter 11 bankruptcy in March 2024 after the 2023 data breach exposed 6.9M customer profiles through credential stuffing; the bankruptcy raised the legally significant question of what happens to genetic databases when a company is acquired — the California Attorney General issued guidance warning users to delete their data; this real-world drama makes any '23andMe security alert' email feel credible and urgent; (3) Ancestry phishing is effective because Ancestry.com is the most active email sender in the genealogy space — users receive legitimate 'new DNA match' and 'new hint' emails constantly, conditioning them to click ancestry-related emails without scrutinizing the sender domain; the 'your family tree is at risk' and 'DNA results inaccessible' lures are emotionally resonant because family trees represent years of research effort; (4) Genetic data enables attacks beyond the immediate account: family matching data exposes biological relatives who can be targeted for extortion, medical information enables insurance fraud and blackmail, and the combination of DOB, SSN (from background check results in some ancestry plans), and full family data creates premium identity theft packages. Warning signs: sender domain not ancestry.com, 23andme.com, or myheritage.com; legitimate DNA platforms never request login credentials via email; any security alert should be accessed only via direct app navigation.