A hacker group claims to have accessed 2.7 billion records from National Public Data (NPD), a firm holding personal information for background checks. The breach, which reportedly occurred in April, exposed sensitive details like Social Security numbers and home addresses for countless Americans.
The group behind the attack, USDoD, says they are offering the stolen information for $3.5 million. The leaked data is said to include records from the U.S., Canada, and the United Kingdom. The breach has triggered widespread concern over the scale and depth of the data compromised.
The incident has drawn sharp warnings from consumer advocates. Teresa Murray of the U.S. Public Interest Research Group stressed the significance of this breach, noting, “This isn’t just another data leak. If it involves such comprehensive data, people need to take this as a major wake-up call.”
The hackers publicized their heist on a notorious forum, where a user named “Felice” claimed responsibility for the NPD breach. In their post, they stated, “The entire NPD database is now available… and there’s more to come.”
In response to inquiries, NPD has remained largely silent, merely issuing a statement indicating they are “aware of certain third-party claims” and are actively investigating. A class-action lawsuit is currently pending in Florida’s U.S. District Court, aiming to hold the company accountable for the security lapse.
This breach is part of a troubling trend where sensitive data is increasingly targeted and monetized by cybercriminals. The scale and severity of the information exposed emphasize the urgent need for both businesses and individuals to tighten their cybersecurity defenses.
With the digital landscape evolving, this latest attack serves as a harsh reminder of the constant threats facing personal information in today’s connected world.