When did the PeopleCheck data breach occur?

The attack probably happened on June 13, 2025, but the breach was discovered on June 24, 2025. The compromised data included information processed between June 2024 and June 2025.

How much data was stolen from PeopleCheck?

The Everest ransomware group claimed to have stolen 4.3 GB of SQL data from PeopleCheck's systems during the breach.

What type of information was compromised in the PeopleCheck breach?

The breach compromised client profiles containing names, email addresses, postal addresses, phone numbers, birth dates, passwords, profile pictures, IP addresses, and two-factor authentication tokens; invoice records with payment details and pricing information; and personal data of individuals processed for With Intelligence including Social Security numbers, mother's names, and other sensitive information.

PeopleCheck is an Australian-based background screening provider that processes personal information for clients to conduct background checks and screening services.

How did the attackers gain access to PeopleCheck systems?

The breach was executed via compromised login credentials, allowing the attackers to gain unauthorized access to PeopleCheck's systems and steal sensitive data.

What is the deadline for enrolling in PeopleCheck's monitoring services?

Enrollment in the complimentary identity and credit monitoring services must be completed by October 31, 2025. Affected individuals should email customercare@peoplecheck.com to receive an activation code.

How many people were affected by the PeopleCheck breach?

The number of affected individuals has not been disclosed by PeopleCheck, though the breach involved data processed for clients between June 2024 and June 2025.

What sensitive data about With Intelligence individuals was exposed?

For individuals processed on behalf of With Intelligence, the exposed data included names, email addresses, internal reference names, dates of birth, phone numbers, birth cities, Social Security numbers, gender, mother's names, and share codes.

What financial information was compromised in the PeopleCheck breach?

The breach compromised invoice records containing payment details, pricing information, discounts, and company identification numbers related to PeopleCheck's business operations.

Were authentication credentials compromised in the PeopleCheck breach?

Yes, the breach compromised client profiles containing passwords and two-factor authentication tokens, along with other sensitive authentication-related information stored in PeopleCheck's systems.

Incident

PeopleCheck reports data breach caused by ransomware attack

Q: What services is PeopleCheck offering to affected individuals?

PeopleCheck is offering affected individuals complimentary access to identity monitoring and credit monitoring services for 24 months. Impacted individuals can enroll by emailing customercare@peoplecheck.com to receive an activation code.

published: July 22, 2025

Learn More

PeopleCheck, an Australian-based background screening provider, is reporting a data breach that compromised personal information processed for clients between June 2024 and June 2025.

The breach was executed via compromised login credentials. The Everest ransomware group publicly claimed responsibility for the attack, announcing on their dark web site that they stole 4.3 GB of SQL data from PeopleCheck's systems. The breach was discovered on June 24, 2025, but the attack probably happened on June 13, 2025. The breach compromised sensitive information, including:

Client profiles containing
- names,
- email addresses,
- postal addresses,
- phone numbers,
- birth dates,
- passwords,
- profile pictures,
- IP addresses,
- two-factor authentication tokens
Invoice records containing
- payment details,
- pricing information,
- discounts,
- company identification numbers
Individuals processed by PeopleCheck on behalf of With Intelligence:
- names,
- email addresses,
- internal reference names,
- dates of birth,
- phone numbers,
- birth cities,
- Social Security numbers,
- gender,
- mother's names,
- share codes

PeopleCheck notified its client With Intelligence Ltd. that their candidates' and employees' data may have been compromised. The number of affected individuals is not disclosed.

The company is offering affected individuals complimentary access to identity monitoring and credit monitoring services for 24 months. Impacted individuals are encouraged to enroll in these services by emailing customercare@peoplecheck.com to receive an activation code. Enrollment must be completed by October 31, 2025.

PeopleCheck reports data breach caused by ransomware attack

Read More
Carruth Compliance Consulting reports data breach affecting thousands …
Datamate Bookkeeping reports data breach exposing sensitive data
Everest ransomware gang claims breach of Australian company …
Tokai Carbon reports data breach exposing data of …
DraftKings reports credential stuffing attack targeting customer accounts