Techly NewsGet the app

Get the latest tech news

National Public Data Published Its Own Passwords


Security researcher Brian Krebs writes: New details are emerging about a breach at National Public Data (NPD), a consumer data broker that recently spilled hundreds of millions of Americans' Social Security Numbers, addresses, and phone numbers online. KrebsOnSecurity has learned that another NPD d...

KrebsOnSecurity has learned that another NPD data broker which shares access to the same consumer records inadvertently published the passwords to its back-end database in a file that was freely available from its homepage until today. In an interview last week, USDoD blamed the July data leak on another malicious hacker who also had access to the company's database, which they claimed has been floating around the underground since December 2023. A review of that archive, which was available from the Records Check website until just before publication this morning (August 19), shows it includes the source code and plain text usernames and passwords for different components of recordscheck.net, which is visually similar to nationalpublicdata.com and features identical login pages.

Get the Android app

Or read this on Slashdot

Read more on:

Photo of passwords

passwords

Photo of National Public Data

National Public Data

Related news:

News photo

National Public Data tells officials 'only' 1.3M people affected by intrusion

News photo

Chrome will redact credit cards, passwords when you share Android screen

News photo

FlightAware Leaks Customer Data (Name, Email Addresses and Passwords)

« Google might pair Pixel Screenshots with Circle to Search for rediscovery
Digital wallets can allow purchases with stolen credit cards »