Data Broker LexisNexis Risk Solutions Says Breach Hit 364,000 People
Data broker LexisNexis Risk Solutions (LNRS) recently notified impacted individuals about a data breach in a third-party platform the company used for software development. The breach exposed the personal information of more than 364,000 people, it said.
Sign up for a free preview to unlock the rest of this article
LexisNexis said it learned on April 1 that an unauthorized actor gained access to the third-party platform containing sensitive LNRS data on December 25, 2024. In its notification letter, the company said the breach did not impact its networks or systems.
After discovering the incident, "we promptly launched an investigation with the assistance of leading external cybersecurity experts, notified law enforcement and took steps to review and further enhance our security controls," LNRS said.
The investigation found the exposed personal information could have included Social Security numbers, driver's license data, contact information or date of birth. LNRS' letter said no credit card or financial information was exposed.
The Office of the Maine Attorney General also reported the breach, as 661 of 364,333 individuals affected were state residents. Notification letters were sent to consumers on Tuesday, it also reported.
In response to the incident, LNRS recommended consumers "remain vigilant for incidents of fraud and identity theft by reviewing your account statements and monitoring your free credit reports." The broker also said it's offering "identity protection and credit monitoring services for two years" for those impacted.