National Public Data Confirms Massive Data Breach, Stolen Information Circulating Online
National Public Data (NPD), a prominent data aggregation service, has confirmed a significant security breach that occurred in December of last year. The breach has resulted in the theft of a database containing 2.9 billion lines of sensitive information, including Social Security numbers.
In April, a hacker group known as USDoD advertised the stolen NPD database on the dark web for $3.5 million. Since then, the compromised data has been posted publicly in various locations, raising concerns about potential widespread identity theft and fraud.
The breach came to light when cybersecurity blog *Krebs On Security* reported the discovery of a website called recordscheck.net, which bore similarities to NPD. The site hosted an archive containing site logins and source code in plaintext, providing sufficient information to access the same consumer records as NPD.
Further investigation revealed that the leaked file contained email data belonging to NPD founder Salvatore Verini, an actor and retired sheriff’s deputy from Florida. When contacted by *Krebs On Security*, Verini stated that the file contained an old website version with “non-working code.” He also announced that NPD would cease operations “in the next week or so” but declined further comments, citing an “active investigation.”
In the wake of the breach, several websites have emerged offering services to check if personal information is included in the leak. These include npdbreach.com from Atlas Data Privacy Corp and npd.pentester.com. However, these services require users to input personal information such as name, birth year, and possibly Social Security number, raising additional privacy concerns.
Given the extent of the data leak, cybersecurity experts recommend that individuals take proactive measures to protect their personal information. This includes placing a freeze on credit reports with major bureaus such as Equifax, Experian, and TransUnion, and taking advantage of the free weekly credit reports to which consumers are entitled.
As the investigation continues, the full impact of this data breach remains to be seen. Authorities and cybersecurity professionals are urging vigilance and caution in the face of this significant threat to personal data security.