3 Billion Social Security Numbers Stolen in Massive Data Breach.
In one of the largest data breaches in history, nearly 3 billion records, including Social Security numbers, have been compromised by National Public Data, a background check company. The breach, allegedly carried out by a hacking group known as USDoD, has raised significant concerns about identity theft and fraud. The stolen data, which includes names, addresses, and Social Security numbers, has been found on the dark web, prompting urgent calls for enhanced cybersecurity measures.
The Breach and Its Scope
The breach was first reported in early August 2024, when a class-action lawsuit was filed against National Public Data (NPD). According to the lawsuit, the breach occurred around April 2024, and the stolen data includes personal information dating back at least three decades. The hacker group USDoD claimed to have exfiltrated the unencrypted personal information of billions of individuals, including their full names, addresses, dates of birth, Social Security numbers, and phone numbers.
The scale of this breach is staggering, with nearly 3 billion people potentially affected. This means that a significant portion of the population could be at risk of identity theft and fraud. The stolen data can be used by fraudsters to open bank accounts, apply for loans, and commit other forms of financial crime. The breach has also highlighted the vulnerabilities in data security practices and the need for stronger protections for personal information.
3 Billion Social Security Numbers Stolen in Massive Data Breach.
Response from National Public Data
National Public Data, based in Coral Springs, Florida, has confirmed the breach and stated that it is working with law enforcement and government investigators to address the issue. The company has also committed to notifying affected individuals if there are further significant developments. However, the sheer volume of compromised records makes it challenging to ensure that all affected individuals are promptly informed.
The breach has prompted calls for stricter regulations and oversight of data security practices. Currently, there is no national privacy law in the U.S. that specifically addresses the collection and protection of personal data by companies like National Public Data. This lack of regulation has allowed data brokers to collect and sell personal information without individuals’ consent, raising concerns about privacy and data protection.
Suggested Reads:
If you suspect that your information has been stolen, there are several steps you can take to protect yourself from identity theft and fraud. First, monitor your financial accounts regularly for any unauthorized transactions. Consider placing a fraud alert or credit freeze on your credit reports to prevent unauthorized access. Additionally, be cautious of phishing attempts and suspicious emails or messages that may try to exploit the stolen data.
The massive data breach involving National Public Data serves as a stark reminder of the importance of robust cybersecurity measures and the need for stronger data protection regulations. As the investigation continues, affected individuals must remain vigilant and take proactive steps to safeguard their personal information. The breach also underscores the critical role of law enforcement and regulatory bodies in addressing cybersecurity threats and protecting the privacy of citizens.
