A hacker group claims to have breached National Public Data (NPD), stealing 2.7 billion records containing sensitive details such as Social Security numbers and physical addresses. The group, calling themselves USDoD, says they are now offering the data for $3.5 million. The breach allegedly took place in April and involves information from not just the U.S. but also Canada and the U.K.
The breach has left cybersecurity experts and consumer protection advocates concerned. According to Teresa Murray, director of consumer advocacy for the U.S. Public Interest Research Group, the leak could have severe repercussions if it includes detailed profiles of individuals. She noted, “This could be one of the most significant breaches we’ve seen. It should push people to take immediate steps to secure their personal data.”
The group responsible for the breach made the announcement on an underground forum, where a hacker using the alias “Felice” shared details of the theft and hinted at future data leaks. In response, NPD has been largely silent, merely acknowledging that they are “aware of certain third-party claims” and are looking into the matter. The company is currently involved in a class-action lawsuit in Florida related to the breach.
This incident underscores the growing threats posed by cybercriminals targeting large-scale data repositories. As personal information continues to be a lucrative target, the risks to ordinary Americans only increase, highlighting the need for better safeguards and more robust data protection practices.