Skip to main content

A great many readers this month reported receiving alerts that their Social Security Number, name, address and other personal information were exposed in a breach at a little-known but aptly-named consumer data broker called NationalPublicData.com. This post examines what we know about a breach that has exposed hundreds of millions of consumer records. We’ll also take a closer look at the data broker that got hacked — a background check company founded by an actor and retired sheriff’s deputy from Florida.

https://krebsonsecurity.com/2024/08/nationalpublicdata-com-hack-exposes-a-nations-data/

A screenshot of the imdb.com profile for National Public Data owner Salvatore Verini Jr. says: Salvator Verini started his acting career in the 6th grade with the stage play "Annie." While continuing doing theater projects, Salvatore landed his first national television role on Burt Reynold's Night Train in 1989." The profile features photos of roles Verini has played, including several of him holding a semi-automatic weapon.
The homepage of NationalPublicData.com says: XML-API Data Service Criminal Records, Background Checks and more. Our services are currently used by investigators, background check websites, data resellers, mobile apps, applications and more. Join now and enjoy quality data with low fees and no monthly minimums.

NationalPublicData.com Hack Exposes a Nation’s Data

krebsonsecurity.com
in reply to BrianKrebs

GMcGath
GMcGath
Maybe it's time to stop pretending there's anything secure about Social "Security" numbers.
in reply to BrianKrebs

bls
bls
Thanks for this Brian! Great depth and already on the freeze plan. 👍
in reply to BrianKrebs

yes, it's me, liza 🇵🇷 🦛 🦦
yes, it's me, liza 🇵🇷 🦛 🦦

"a background check company founded by an actor and retired sheriff’s deputy from Florida"

i just... wow.

@briankrebs

@BrianKrebs
in reply to BrianKrebs

wiredog
wiredog
As I posted over on Bluesky, all my security clearance info when to Beijing several years ago. I figure I have no secrets from anyone who’s interested.
in reply to BrianKrebs

Fi, infosec-aspected 🏳️‍⚧️
Fi, infosec-aspected 🏳️‍⚧️
wtf you're telling me the guy responsible for this leak is basically budget Stallone?
in reply to BrianKrebs

Jeff
Jeff
as the person in charge of IMDb's information security, I freaked out for just a second when I saw a screenshot from the site in your post here.
in reply to BrianKrebs

Exhaust_Fumes
Exhaust_Fumes

" a background check company founded by an actor and retired sheriff’s deputy from Florida."

welp...

in reply to BrianKrebs

RodneyPetersonTalentAgency
RodneyPetersonTalentAgency

Whatever you do I’d stay away from Pentesters free check to see if your name is on the list. Assume it is. Period.

All you’ll be doing by giving Pentester the information is them knowing they can pitch their useless bullshit “security” services to you and sell the information to others.

in reply to BrianKrebs

Fluffy Kitty Cat
Fluffy Kitty Cat
it should be considered automatically a jailable criminal offense to possess the information without a signature on file from the individual specifically authorize him to have it. That would range of the day you broke her in the street dead overnight and we would all be better off for it. Also abolish credit scores while you're at it
in reply to BrianKrebs

Bill Zaumen
Bill Zaumen
One thing that might help: set up a federal program where you bank or some other trusted financial institution is by law responsible for repairing everything. These entities would be funded by the government. To pay for the program, we tax those businesses that did not protect your personal data. I've received multiple "we take security seriously" letters this year, each offering a paltry 2 years of "credit monitoring," each provided by someone else. It is too much to handle.
in reply to BrianKrebs

ṫẎℭỚ◎ᾔ ṫ◎ℳ
ṫẎℭỚ◎ᾔ ṫ◎ℳ

Did you do any stories on this? "

#CNBC's 📺 Ep. 1: Putin's Trader

The Crimes of Putin’s Trader

True Crime #Podcast📻

Eamon Javers examines the life of Vladislav Klyushin, his incredible connections at the top of Russian society, and his deep relationship with Russian intelligence agencies. Listeners will go inside Klyushin’s criminal cyber company, known as M-13, and get a taste of his high-rolling lifestyle, fabulous parties, trips to the soccer World Cup, and helicopter skiing. Javers also details the emerging bromance between Klyushin and his employee Yermakov, a former Russian intelligence officer and hacker who was indicted by the U.S. government for his role in cyber espionage related to the 2016 American presidential election.
" https://podcasts.apple.com/us/podcast/the-crimes-of-putins-trader/id1756965766?i=1000665432210


‎The Crimes of Putin’s Trader: Ep. 1: Putin's Trader on Apple Podcasts

‎Show The Crimes of Putin’s Trader, Ep Ep. 1: Putin's Trader - Aug 15, 2024
Apple Podcasts
#podcast #cnbc
This entry was edited (1 month ago)
in reply to BrianKrebs

Jared Rimer
Jared Rimer
Brian, I got two alerts from the one I signed up with from the OPM breach, add me to that list.