Data Breach Alert: National Public Data Compromised
In September 2024, National Public Data confirmed that a hacker had breached the personal records of millions of individuals. The exposed information includes names, email addresses, mailing addresses, phone numbers, and Social Security numbers of up to 2.9 billion people. Here's what you need to know:
What Happened?
National Public Data, a consumer data broker specializing in criminal records, background checks, and other data services for private investigators, public record sites, HR departments, staffing agencies, and government entities, was hacked. The breach is believed to have begun in December 2023 when a third-party bad actor attempted to gain access.
In April, a cybercriminal known as "USDoD" posted the stolen data on a popular criminal forum. On August 6, the dataset resurfaced, this time available for free on several breach forums for anyone to download.
The compromised data includes names, addresses, phone numbers, email addresses, and Social Security numbers for millions of people, including some deceased individuals. The data also contains previous addresses and, in some cases, alternate names.
While the official data breach notice filed in Maine indicated that 1.3 million records might have been compromised, some lawsuits suggest that up to 2.9 billion records have been exposed.
As the investigation continues, many cyber experts have found that some of the released data is inaccurate. Aside from the Social Security numbers, most of the information is already publicly accessible online.
Why Is This Breach Dangerous?
Even though much of the information can be found online, having it all in one place makes it easier for criminals to commit fraud. They can use this information to apply for credit cards, loans, or open new bank accounts.
Details like childhood street names or the last four digits of Social Security numbers are often used for security questions. Hackers can use this information to bypass authentication and access private accounts.
Experts also warn of a potential increase in phishing and smishing (phishing via SMS) attacks.
Can You Be Affected Even If You've Never Heard of National Public Data?
Yes! Even if you haven't interacted with National Public Data, other organizations, businesses, landlords, etc., may have used their services to gather information about you.
What Should You Do to Protect Yourself?
Step 1: Check if Your Data Has Been Exposed
Use tools like https://npd.pentester.com/ to find out if your information has been compromised. If it has, take immediate action.
Step 2: Request a Copy of Your Credit Report and Freeze Your Credit
One of the best ways to protect your identity is to freeze your credit and set up alerts. This prevents criminals from opening new lines of credit in your name. Contact all three major credit bureaus—Equifax, TransUnion, and Experian—to request a freeze. The process is free and should take less than 10 minutes per site. If there are others in your household over the age of 18, it's a good idea to freeze their credit too. Anyone with a Social Security number is vulnerable following a breach of this magnitude.
Once you have a copy of your free credit report, review it for any unauthorized activity. Don't forget to set up alerts and regularly review your credit.
Step 3: Watch Out for Phishing Scams
Many cybercriminals will try to leverage this information to scam you through phone calls, text messages, emails, and even social media. Be cautious!
Stay vigilant and take proactive steps to protect your personal information.
A data breach is devastating for everyone involved - the
business hacked and the customers or employees whose data is leaked. As a
business owner, it is your responsibility to make sure you are taking the
highest precautions to protect your business and its data. If you want to do a
full assessment and find out if any of your information has been leaked or if
your network is vulnerable to a breach, we'll do a FREE consultation. This deep dive into your network will provide you with a blueprint
for security steps to take. To book yours, call our office at 702-605-9998 or click here.
