HQ/EMEAFind out how we can help your business
The notorious hacker group known as “USDoD” has once again attacked one of the most prominent American consumer credit reporting agencies, TransUnion.
TransUnion is a global giant in consumer credit reporting that stores data on over one billion individuals in over thirty countries, including 200 million archives profiling nearly every credit-active consumer in the US. These troves of data are the backbone of the credit industry; hence, the entity should prioritise its cyber defence to prevent the compromise of countless individuals’ financial well-being and privacy.
USDoD leaked gigabytes worth of PIIs.
USDoD, a threat actor known for its audacious and high-stakes cyberattacks, announced that they leaked a database that contains 3GB worth of sensitive personally identifiable information (PII) belonging to approximately 58,505 people across the globe.
The leaked archive includes data from March 2, 2022. It displays various information, such as full names, Internal TransUnion identifiers, gender information, passport details, place of birth, date of birth, civil status, age, current employer information, financial transactions history, credit scores, outstanding loans in their name, remaining balances on those loans, and the origin of the loans.
The more alarming detail about this breach is that it reaches different regions of the globe. The confirmed individuals affected by this incident mostly came from North and South America and Europe.
The identity of the hacker group USDoD is still a mystery in the cybersecurity community despite having well-documented breaches in high-profile cybercriminal campaigns.
Furthermore, authorities have listed this enigmatic group in prosecuting the notorious owner of the BreachForums cybercrime forum, Pompompurin. Many cybersecurity researchers believe that USDoD is the architect behind numerous other significant security breaches, making it a formidable and relentless adversary of the cyber security landscape.
Law enforcement agencies and cybersecurity researchers are trying to assess the entire scope and damage of the attack and hunt those responsible for its execution.
The leaked susceptible information from TransUnion violates personal privacy and is a potential gateway to other malicious campaigns, such as identity theft and financial fraud. Therefore, relevant individuals who suffered from the data leak should be extra vigilant with their accounts since other hackers could have acquired the leaked info and used it for their campaigns.
