The details have been revealed concerning a hack that occurred at National Public Data (NPD) the consumer data broker which recently leaked many millions of Americans’ Social Security Numbers addresses, addresses and phone numbers on the internet. KrebsOnSecurity has discovered that a different NPD data broker who has data access with the records of consumers accidentally published passwords for its database back-end in a document which was accessible for free from its website until the present.
A cybercriminal identified as USDoD began selling data from NPD. In July, an individual exposed the stolen data which included name, addresses telephone numbers and, in some instances, email addresses of more than 272 million individuals (including many who are dead).
NPD admitted to the intrusion on August. 12, stating that it was a result of the security breach in the month of December 2023. In a conversation last week, USDoD blamed the July data leak on a malicious hacker that was also able to access the company’s database that they said has been in the shadows since December 2023.
Following the story last week about the magnitude of the NPD breach A reader informed KrebsOnSecurity that a related NPD property -the background search site recordscheck.net was hosting an archive containing the usernames and passwords of the administrator of the site.
ALSO READ
Vellise Review {2024}: Vellise com Lawfull or Fake?
Vogue-melbourne Review {2024}: Is Vogue-melbourne com Scam?
Cuckooshop Review {2024}: Is Cuckooshop com au licit or a Scam?
London-essentials Review {2024}: Is London-essentials uk Legit or a Scam?
Purc Hair Growth oil Scam or legit? Purcorganics com- Honest review!
A review of that archive, which was available from the Records Check website until just before publication this morning (August 19), shows it includes the source code and plain text usernames and passwords for different components of recordscheck.net, which is visually similar to nationalpublicdata.com and features identical login pages.
The archive that was exposed and filename “members.zip,” indicates RecordsCheck users were assigned the same password of six characters and told to change it, however most did not.
According to the breach-tracking company Constella Intelligence, the passwords contained inside the archives of source code match to those exposed in earlier security breaches involving accounts with NPD’s founder, a famous actor and former Sheriff’s deputy in Florida known as Salvatore “Sal” Verini.
Contacted by email and a phone call, Herr. Verini said the exposed archive (a .zip file) that contained recordscheck.net credentials was deleted from the site of the company and the website will be shut down “in the next week or so.”
“Regarding the zip, it has been removed but was an old version of the site with non-working code and passwords,” Verini stated to KrebsOnSecurity. “Regarding your query there is an ongoing investigation that we are not able to provide any information at the moment. However, once we are able to then, we’ll be with you when we read your blog. It’s very informative.”
The leak of recordscheck.net source code suggests that the website was developed by a Web development company with its headquarters within Lahore, Pakistan called creationnext.com that did not reply to messages requesting comments. CreationNext.com’s homepage includes a glowing review by Sal Verini.
A testimonial by Sal Verini on the homepage of CreationNext CreationNext, the Lahore web-based development company that allegedly created NPD as well as RecordsCheck.
There are a number of websites that have been set up to assist people in finding out whether their SSN as well as other information was compromised in the breach. One of these is npdbreach.com A lookup page created in the name of Atlas Data Privacy Corp. A second lookup service is accessible at npd.pentester.com. Both websites reveal NPD was a stale and inaccurate information about Yours Truly.
The best recommendation for people worried about this breach is to lock down the credit file of all of the main consumer reports bureaus. A block on your file will make it more difficult for thieves who steal your identity to set up new accounts under your name. Additionally, it restricts who has access to your credit report.
It’s a great idea since all the information ID thieves need to verify your identity is accessible from multiple sources due to the plethora of data breaches that have been reported that involved SSN information and other important informational points on people.
Screenshots of the Telegram-based ID theft service selling background checks using fake law enforcement accounts on USInfoSearch.
There are many cybercriminal service providers which provide thorough background checks of customers, as well as complete SSNs. These services are operated by compromised accounts of data brokers who provide private investigators and law enforcement officials. they are also fully automated using Telegram instant messaging bots.
On November 20, 2023 KrebsOnSecurity reported on a of these services that was powered by hacker accounts from USInfoSearch, the U.S. Consumer Data Brokerage USInfoSearch.com. It is interesting due to the leak of source code that states that Records Check pulled background reports about individuals through NPD’s database as well as records from USInfoSearch. KrebsOnSecurity wanted to hear about the issue from USInfoSearch as well as updating this story should they respond.
The key is that if you’re an American who hasn’t yet frozen their credit file, and you haven’t yet been the victim of any type of account fraud that’s new The ID thieves aren’t even able to contact you as of yet.
All Americans can also receive a free copy your credit report each week from all three main credit bureaus. The previous system was that consumers could obtain a FREE report per bureau every year, but in the month of October of 2023, the Federal Trade Commission announced the bureaus had extended their program that allows you to review your credit report every week at no cost.
If you’ve not done this in a while, this is the perfect opportunity to get your files ordered. In order to place a freeze you’ll have to open an account with any of three main reporting bureaus: Equifax, Experian and TransUnion. After you’ve set up an account, you’ll be able examine and then block the credit report. If you notice any mistakes like random names and addresses that you aren’t familiar with Don’t ignore these. Redress any errors you detect.