The personal information of 58,505 people will soon fall into the hands of cybercriminals.
TransUnion is an American consumer credit reporting agency that collects and aggregates information about more than a billion individual consumers from over 30 countries, including 200 million files that profile almost every single credit-active consumer in the United States.
The attacker, known under the pseudonym "USDoD", claims to have managed to steal and make public TransUnion's confidential data. This information was provided by researchers from VX-Underground.
The leaked data is more than 3 GB in size and contains personal information of approximately 58,505 people worldwide, including North and South America, as well as Europe. The archive itself is dated March 2, 2022, which probably indicates the immediate date of the security breach.
The leak includes the victims first name, last name, gender, passport details, place and date of birth, marital status, age, current employer information, credit score, and even the outstanding balance of their loans. All this extensive information can be used extremely destructively by intruders.
It is noteworthy that TransUnion was already the victim of a major cyber attack last year, when attackers stole 4 TB of data from its South African division, demanding a ransom of $15 million from the company itself or more lenient amounts directly from its customers.
Regarding the recent hack, the name of the "USDoD" hacker involved in the incident is already well known in the cybersecurity industry. The cybercriminal was also involved in charges against the well-known owner of the hacker forum BreachForums under the pseudonym Pompompurin.
According to VX-Underground, "USDoD" is involved in many other significant security breaches. Recently, an attacker claimed to have gained access to the Airbus web portal by hacking the account of a Turkish airline employee. And in December 2022, USDoD put up for sale a database containing the contact details of more than 80,000 high-ranking individuals, after the hacking of InfraGard, a special portal of the FBI.
Earlier, USDoD also claimed to have joined a young ransomware group called Ransomed, which has already attacked many companies this month.
The latest leak of TransUnion customers personal data shows how vulnerable confidential information can be in the modern world. Even large companies are not immune from hacker attacks and data leaks.
Organizations of all sizes need to be much more thorough in ensuring comprehensive cybersecurity of their networks in order to avoid similar breaches in the future.
TransUnion is an American consumer credit reporting agency that collects and aggregates information about more than a billion individual consumers from over 30 countries, including 200 million files that profile almost every single credit-active consumer in the United States.
The attacker, known under the pseudonym "USDoD", claims to have managed to steal and make public TransUnion's confidential data. This information was provided by researchers from VX-Underground.
The leaked data is more than 3 GB in size and contains personal information of approximately 58,505 people worldwide, including North and South America, as well as Europe. The archive itself is dated March 2, 2022, which probably indicates the immediate date of the security breach.
The leak includes the victims first name, last name, gender, passport details, place and date of birth, marital status, age, current employer information, credit score, and even the outstanding balance of their loans. All this extensive information can be used extremely destructively by intruders.
It is noteworthy that TransUnion was already the victim of a major cyber attack last year, when attackers stole 4 TB of data from its South African division, demanding a ransom of $15 million from the company itself or more lenient amounts directly from its customers.
Regarding the recent hack, the name of the "USDoD" hacker involved in the incident is already well known in the cybersecurity industry. The cybercriminal was also involved in charges against the well-known owner of the hacker forum BreachForums under the pseudonym Pompompurin.
According to VX-Underground, "USDoD" is involved in many other significant security breaches. Recently, an attacker claimed to have gained access to the Airbus web portal by hacking the account of a Turkish airline employee. And in December 2022, USDoD put up for sale a database containing the contact details of more than 80,000 high-ranking individuals, after the hacking of InfraGard, a special portal of the FBI.
Earlier, USDoD also claimed to have joined a young ransomware group called Ransomed, which has already attacked many companies this month.
The latest leak of TransUnion customers personal data shows how vulnerable confidential information can be in the modern world. Even large companies are not immune from hacker attacks and data leaks.
Organizations of all sizes need to be much more thorough in ensuring comprehensive cybersecurity of their networks in order to avoid similar breaches in the future.
