Massive Data Breach: How to Know if Your Social Security Number Was Compromised
Details of the Data Breach
In a recent data breach, numerous Social Security numbers were compromised. The breach was confirmed by a data protection company, and several websites have been launched to allow individuals to check if their information was compromised.
A lawsuit has been filed against National Public Data, alleging that the company was hacked by cybercrime organization USDoD. The hackers reportedly put the database up for sale on the dark web for a price of $3.5 million. The lawsuit claims that around 2.9 billion records, including names and Social Security numbers spanning at least the last three decades, were compromised.
The plaintiff, Christopher Hoffman, accuses National Public Data of failing to secure and safeguard the personally identifiable information it collected and maintained as part of its regular business practices.
National Public Data's Response
National Public Data confirmed the data breach in a letter and an online statement. However, the firm did not confirm that 2.9 billion records were compromised. In a filing with the Maine Attorney General’s office, the firm stated that 1.3 million people were potentially exposed.
According to the company, the incident involved a third-party bad actor trying to hack into data in late December 2023, with potential leaks of certain data in April 2024 and summer 2024. The firm confirmed that personal information such as Social Security numbers, mailing addresses, email addresses, names, phone numbers, and other data were compromised.
The firm advised consumers to try to mitigate any potential harm associated with Social Security numbers being used for nefarious purposes. This included contacting the three major U.S. credit reporting agencies, Equifax, TransUnion, and Experian, to get a credit report.
How to Check if Your Information Was Compromised
Since the details of the incident surfaced, at least two third-party websites have been established to check whether one’s Social Security number has been compromised.
One of these websites is operated by Pentester, a cybersecurity testing service. This site allows a person to input their first name, last name, state, and date of birth. Richard Glaser, a spokesman for the company, confirmed that the data was originally for sale months ago on the dark web. He also urged people whose Social Security numbers have been compromised to protect themselves and be prepared for future data breaches.
Another site, www.npdbreach.com, is operated by Atlas Privacy, another cybersecurity company. This site allows a person to search using their first name, last name, and ZIP code, or their Social Security number or phone number.
National Public Data's Cooperation
Following the breach, National Public Data announced that it is cooperating with law enforcement and government officials. The company will attempt to notify users if there are further significant developments applicable to them and recommends people monitor their financial accounts for unusual activity.
Bottom Line
The data breach at National Public Data is a stark reminder of the importance of securing personal information. It's crucial to stay vigilant and take necessary steps to protect your data. If you suspect your information may have been compromised, make sure to use trusted sources to verify and take necessary steps to protect yourself. What are your thoughts on this incident? Share this article with your friends and let them know about this situation. You can also sign up for the Daily Briefing, which is delivered every day at 6pm.
