Suspected TransUnion data of over 58,000 persons leaked on the dark web, company denies
Learn More
Cybersecurity researcher vx-underground reports that a threat actor using the pseudonym "USDoD" has perpetrated a breach, exposing sensitive data from TransUnion.
TransUnion is one of the three major credit bureaus in the United States, alongside Equifax and Experian. It is a consumer credit reporting agency that collects and maintains credit information on individuals and businesses.
The leaked database amounts to over 3GB in size, comprises of highly sensitive Personally Identifiable Information (PII) pertaining to 58,505 individuals. This breach seemingly occurred on March 2nd, 2022, per the dates of the exposed records. The compromised database encompasses information about individuals scattered across the globe, encompassing the Americas (both North and South) and Europe.
The leaked data encompasses the following details:
- First names
- Last names
- Internal TransUnion identifiers
- Gender information
- Passport particulars
- Place of birth
- Date of birth
- Civil status (potentially)
- Age
- Current employer information
- Details regarding their employer
- A concise summary of their financial transactions
- Credit scores
- Loans under their name
- Remaining balances on these loans
- The source from which they obtained the loan
- Start date of TransUnion's monitoring of their information
The leak seems to originate from South America, since most of the language in the leaked database is spanish.
TransUnion has not made any announcement regarding this event.
Update - TransUnion denied being breached, with an announcement that comes two days after a threat actor using the published on a cybercrime forum a database allegedly containing the information of roughly 58,000 individuals.
In a notification on its website, TransUnion revealed that after learning of the threat actor’s claims, it launched an investigation into the matter, but found no evidence that it has been breached.
TransUnion notes that it has analyzed the leaked database and concluded that it could originate from a third party.
“Through our investigation, we have found that multiple aspects of the messages – including the data, formatting, and fields – do not match the data content or formats at TransUnion, indicating that any such data came from a third party,” the firm says.
