Skip to main content

One of the worst data breaches in history just got even worse

New details have surfaced about what is reportedly one of the most critical breaches in internet history. As Tom’s Hardware reports, a user who goes by the alias Fenice claims to have posted for free a more complete version of the allegedly stolen data from the background check company National Public Data and published it on a popular hacking forum.

On August 6, Fenice posted the data affecting 2.9 billion personal records and claimed that a distinct hacker named SXUL, not USDoD, caused the breach. While others had posted copies of the data before, none were apparently as complete as the one Fenice provided. Nonetheless, there are apparent problems with the data, including wrong Social Security numbers.

There is still no official information about whether anyone in the U.S. is affected, but BleepingComputer has received confirmation from many individuals that the breach compromised their and their families’ data. It also checked that the data contained previous addresses, which indicates that the hackers took the data from an old backup.

The breach first surfaced in a class-action lawsuit sourced by Bloomberg Law. Nonetheless, National Public Data, also known as Jerico Pictures, has still not officially confirmed the breach or detailed how it happened. Therefore, all new information needs to be taken with skepticism. Many users were unaware that the company possessed such information in the first place, and according to the lawsuit, NPD supposedly scraped data from non-public sources to conduct personal background checks.

The lawsuit also accused NPD of various charges, including breaches of fiduciary duty, unjust enrichment, and more.

Judy Sanhz
Judy Sanhz is a Digital Trends computing writer covering all computing news. Loves all operating systems and devices.
Hackers stole LastPass source code in data breach incident
lastpass on phone

Today, LastPass confirmed a data breach in a blog post describing the incident to its customers that rely on the company's products for online security. The company emphasized that customer data was not stolen in the breach, however, and that users do not have to do anything to secure their data.

In a post written by CEO Karim Toubba, LastPass stated the following:

Read more
Google just thwarted the largest HTTPS DDoS attack in history
A depiction of a hacker breaking into a system via the use of code.

Google has confirmed that one of its cloud customers was targeted with the largest HTTPS distributed denial-of-service (DDoS) attack ever reported.

As reported by Bleeping Computer, a Cloud Armor client was on the receiving end of an attack that totaled 46 million requests per second (RPS) at its peak.

Read more
Hacking-as-a-service lets hackers steal your data for just $10
A depiction of a hacker breaking into a system via the use of code.

A new (and cheap) service that offers hackers a straightforward method to set up a base where they manage and perform their cyber crimes has been discovered -- and it’s gaining traction.

As reported by Bleeping Computer, security researchers unearthed a program called Dark Utilities, effectively providing a command and control (C2) center.

Read more