Initially, a hacker known as USDoD claimed responsibility for the breach, offering the data for sale at $3.5 million. The hacker asserted that the data comprised 2.9 billion records covering individuals from the United States, Canada, and the United Kingdom. However, on August 6, 2024, a user named Fenice released what is believed to be the most comprehensive version of the stolen data on the Breached hacking forum. Fenice claimed that the actual perpetrator was another hacker named SXUL, not USDoD.
This leak is particularly concerning as it appears to be the most complete version of the data exposed so far, offering a trove of sensitive information for free. While the accuracy of the data has been questioned due to discrepancies such as outdated addresses and incorrect Social Security numbers, the sheer volume of the leak underscores the significant risks posed by such breaches. The presence of multiple records for individuals due to address changes further complicates the situation, making it challenging to determine the full scope of those affected.
The breach has far-reaching implications for both individuals and organizations, highlighting the vulnerabilities in data collection and storage practices. With the data now widely available, there is a heightened risk of identity theft, fraud, and other malicious activities. This incident serves as a stark reminder of the importance of robust cybersecurity measures and the need for organizations to safeguard the personal information they collect.
Source: Tom’s Hardware
The European Cyber Intelligence Foundation is a nonprofit think tank specializing in intelligence and cybersecurity, offering consultancy services to government entities. To mitigate potential threats, it is important to implement additional cybersecurity measures with the help of a trusted partner like INFRA www.infrascan.net, or you can try yourself using check.website.