A recent data breach puts sensitive information, including Social Security numbers, at risk. The hacker group USDoD claims to have stolen the personal records of 2.7 billion people from National Public Data (NPD). NPD conducts background checks for employers, private investigators, and staffing agencies. USDoD is offering to sell this data for $3.5 million. The breach affects people from the U.S., Canada, and the UK. The data includes details like names, addresses, dates of birth, Social Security numbers, phone numbers, and alternate names and birth dates.
NPD hasn’t confirmed the breach or identified those affected. They said they are investigating and have deleted the database, keeping only what’s needed for legal reasons.
Potential Risks
The stolen data could allow criminals to create fake accounts or change existing ones. Identity theft is a major concern. Email addresses, driver’s license and passport photos were not reported as part of this breach. However, past breaches may have exposed these details. Most accounts need your name, Social Security number, date of birth, and address to change a password, so it’s crucial to stay vigilant.
How to Protect Yourself
Data breaches are common, and personal information is often available on the dark web. To protect yourself, consider freezing your credit with the three major agencies:
Freezing your credit is free and can be done online or by phone. It stops others from opening new accounts in your name. Just remember to unfreeze it if you need to apply for credit.
Be cautious of unsolicited emails offering to help with credit freezes—they’re likely scams. Some services monitor your accounts and the dark web for a fee. If your data was part of the breach, NPD might offer a year of free monitoring.
Companies like Google and Experian scan the dark web for your information, but these scans are not linked to this specific breach. Pentester provides a free tool to check if your data was involved.
Protecting Your Existing Accounts
Existing accounts can be more vulnerable, especially if you haven’t set them up for online access. It’s usually easier to set up new accounts with strong security from the start than to update old ones. Use strong, unique passwords for each account and change them regularly.
Two-factor authentication (2FA) adds extra protection. This usually involves getting a text message or using an app to verify your identity.
Beware of Scammers
Scammers can also steal your phone number. To protect yourself, some phone companies offer passcodes that limit access to your account. Check with your phone provider for these options.
Be Cautious with Unsolicited Messages
The biggest threat is falling for scams. Scammers may pretend to be from your bank, employer, or other services, contacting you by text or email. Don’t respond to these messages. Instead, reach out to the organization directly using contact information from their official website.
Never click on links or call numbers from unexpected messages. If you receive a suspicious email or text claiming to be from NPD or another organization, do not respond. Contact the organization directly through their website or phone number to verify any claims.
Stay Vigilant
It is critical to monitor your online identity, as the information can also be used to falsify sponsorship of various immigration avenues. As always, we actively monitor ongoing news items, providing insight to events that may affect our clients. If you have questions about any U.S. immigration issues, contact us.