1.2 billion records of personal data exposed in one of the biggest breaches

Your profile information may be part of the Data Enrichment Exposure From PDL Customer data breach. Here’s what’s known about the latest security breach.

Over 1.2 billion records of personal data have leaked online in a massive security breach. The leaked data contains email IDs, employers, social media profiles, phone numbers, names, job titles and even geographic locations.

Discovered by security researchers Vinny Troia and Bob Diachenko, the exposed data comes with an index which suggests it was essentially sourced from a data enrichment company called People Data Labs. The unprotected Elasticsearch server contained as many as 622 million unique email addresses, researchers added.

“The server was not owned by PDL and it’s believed a customer failed to properly secure the database. Exposed information included email addresses, phone numbers, social media profiles and job history data,” read an email notification from Have I been pwned.

Interestingly enough, there’s very little information about PDL which claims to build “people data.” According to its LinkedIn profile, the San Francisco-based company has dataset of 1.5 billion unique person profiles which can be used to “build products, enrich person profiles, power predictive modeling/AI, analysis, and more.”

The date of breach is October 16, 2019.


Leave a Reply

Your email address will not be published. Required fields are marked *