Experian hack exposes 15 million people’s personal information

Hack of one of the largest data brokers and credit agencies in the world affects T-Mobile USA users who applied for credit checks, company says

Experian, one of the largest credit agency data brokers in the world, has been hacked. Some 15 million people who used the company’s services, among them customers of cellular company T-Mobile who had applied for Experian credit checks, may have had their private information exposed, the company confirmed on Thursday.

Information from the hack includes names, addresses, and social security, driver’s license and passport numbers. The license and passport numbers were in an encrypted field, but Experian said that encryption may also have been compromised.

Connecticut’s attorney general said he will launch an investigation into the breach.

The company said its consumer credit database was not affected and that “no other clients’ data was accessed”, presumably meaning the damage is limited to T-Mobile.

Experian did not name the perpetrator but in a statement the company said it had contacted law enforcement. The hack specifically affects “those who applied for T-Mobile USA postpaid services or device financing from September 1, 2013 through September 16, 2015”, according to Experian.

“Experian discovered an unauthorized party accessed T-Mobile data housed in an Experian server,” the company said in a questions page addressed to consumers. Experian is offering consumers affected by the breach free credit monitoring services.

T-Mobile said it won’t delete credit check data from the Experian servers because of credit laws that require retention for 25 months.

Full article: Experian hack exposes 15 million people’s personal information (The Guardian)

Comments are closed.