In a breach that could have widespread consequences, a notorious hacking group has reportedly released a massive amount of sensitive personal information, including Social Security numbers, on an online marketplace. This breach, allegedly affecting nearly every American, has the potential to fuel a surge in identity theft and other fraudulent activities, according to cybersecurity experts.
The Breach
Four months ago, the hacking group USDoD claimed to have stolen personal records from National Public Data (NPD), a major data broker. The stolen data, purportedly belonging to 2.9 billion people, was initially offered for sale for $3.5 million. Last week, a member of the group, known as “Felice,” reportedly released a significant portion of the data for free online.
The leaked information includes full names, addresses, dates of birth, Social Security numbers, and phone numbers. While email addresses and government-issued photo IDs appear to be missing, experts warn that the available data is sufficient for criminals to commit a range of identity-related crimes.
Implications and Risks
Teresa Murray, a consumer watchdog director with the U.S. Public Interest Research Group (PIRG), emphasized the gravity of the situation. “If this is indeed a comprehensive dossier on every American, it’s far more concerning than previous breaches. This should be a wake-up call for anyone who hasn’t taken precautions,” she said.
The leaked data could be used to create fraudulent accounts, take over existing ones, or commit other forms of identity theft. The danger is compounded by the possibility of criminals combining this new data with information from previous breaches.
National Public Data’s Response
National Public Data has yet to formally notify those affected by the breach. However, in response to inquiries, the company has stated that it is investigating the claims and has “purged the entire database” to remove non-public personal information. They also noted that certain records might still be retained due to legal obligations.
Protecting Yourself
Experts urge individuals to take immediate action to safeguard their identities. One of the most effective measures is placing a freeze on credit files with the three major credit bureaus—Experian, Equifax, and TransUnion. This prevents new accounts from being opened in your name but requires temporarily lifting the freeze if you need to apply for credit.
In addition, signing up for online access to existing financial accounts can prevent thieves from doing so in your name. Strong, unique passwords and two-factor authentication are also essential defenses against unauthorized access.
Finally, be vigilant against phishing scams. If you receive unsolicited messages from unknown sources claiming to be from your bank or service provider, it’s safer to contact the company directly using verified contact information.
As data breaches continue to escalate, it’s crucial to remain proactive in protecting your personal information. The fallout from this breach may be long-lasting, and the steps you take now can help mitigate its impact.