National Public Data (NPD) has finally acknowledged a data breach that had been reported by a hacking group and a class action lawsuit. Initial reports suggested a massive breach impacting 2.9 billion personal records, including sensitive information like Social Security numbers. This would have made it one of the largest data breaches in history. However, NPD’s official statement clarifies that the incident involved a third-party actor attempting to hack into data in late December 2023, with potential leaks occurring in April 2024 and summer 2024.
Separately, the Maine Attorney General’s office reported that 1.3 million people were affected by the breach. If this figure is accurate, it represents a much smaller scale than initially reported. While still concerning, this news offers some relief compared to the initial estimate of 2.9 billion.
No official information has been released regarding affected individuals in the UK or Canada. However, NPD is cooperating with law enforcement to investigate the incident and review the affected records. They plan to notify affected users if any further significant developments arise.
NPD urges users to take precautions against potential fraud by closely monitoring their financial activity. The company also recommends contacting the three major U.S. credit reporting agencies (Equifax, Experian, and TransUnion) to obtain free credit reports and consider placing a fraud alert. A fraud alert informs creditors to contact you before any changes are made to existing accounts or new ones are opened.
While the exact number of individuals affected remains to be confirmed, the situation highlights the importance of data security and the need for individuals to be vigilant in protecting their personal information. It is crucial to stay informed about any potential threats and take appropriate steps to mitigate risks.