VeriSource Services reports data breach impacting 4M individuals
Learn More
VeriSource Services, Inc. ("VSI") is reporting a data breach after discovering that an unauthorized party gained access to sensitive information in the company’s systems. VeriSource Services, Inc., based in Houston, Texas, specializes in employee benefits administration, HR outsourcing, direct billing administration, and dependent verification services.
VSI first detected unusual activity within its network on February 28, 2024. The company secured its systems and initiated an investigation with an external cybersecurity experts. The investigation confirmed that unauthorized access had occurred a day earlier, on February 27, 2024, resulting in the theft of sensitive data. VSI notified the FBI and conducted a review of the compromised files to identify the impacted individuals.
The compromised data pertains to 55,000 employees and their dependents associated with companies using VSI’s services. The exposed information includes:
- Names
- Dates of birth
- Social Security numbers
No details are disclosed about the nature of the attack.
Starting on August 21, 2024, VSI began notifying affected individuals by sending data breach letters, which provide details about the exposed information specific to each person.
Update - as of 28th of April 2025, VeriSource Services reports that the data breach from February 2024 has impacted approximately 4 million individuals across the United States. Apparently the full impact assessment wasn't completed until April 2025 - more than a year after the initial breach.
The types of exposed personal was amended to include :
- Full names
- Home addresses
- Dates of birth
- Gender information
- Social Security numbers (SSNs)
VeriSource had previously sent notifications to 55,000 people in May 2024 and another 112,000 in September 2024.
