A July 28 data breach at TransUnion compromised customer data stored in a third-party application and affected more than 4.4 million customers. TransUnion discovered the breach two days later and stated that the core credit database and credit reports were not accessed. Maine and Texas filings show 16,828 Maine residents and 377,357 Texas residents received notices; Maine residents are offered up to two years of free credit monitoring. The breach exposed personal information including names, social security numbers, and dates of birth. TransUnion did not provide details about the attackers or any demands. The incident highlights risks to companies holding large consumer data sets.
TransUnion reported the breach, which occurred on July 28, in a filing with Maine's attorney general's office on Thursday. The filing showed that customer data stored in "a third-party application" was compromised on that date. TransUnion discovered the breach two days later and reassured customers that the hackers did not access any credit information, including credit reports. "Upon discovery, we quickly contained the issue, which did not involve our core credit database or include credit reports," a TransUnion spokesperson told Bloomberg in an email.
In another filing, this time with Texas's attorney general's office, TransUnion disclosed that 377,357 Texas residents were affected by the breach, and that it had provided notice to those residents through U.S. Mail. The filing revealed that personal information like names, social security numbers, and dates of birth had been compromised through the incident. The company did not answer detailed questions about the breach, including who the hackers were and if they demanded anything, in correspondence with Bloomberg.
Collection
[
|
...
]