ICYMI, check your email address: This month, hackers stole the sensitive info of 31 million Internet Archive users. Details are scarce so far, but we know they grabbed email addresses and encrypted passwords. Hackers left a message on the homepage: “See 31 million of you on HIBP,” aka Have I Been Pwned. Click this link to see if you’re on their list.
Ever run a background check? 20 mil Truth Finder and Instant Checkmate accounts leaked
Have you ever done a background check on yourself or someone else? It’s a good way for employers to determine if a potential worker is trustworthy. Some people even do background checks on potential dates in online dating. Tap or click here to learn how to do a free background check.
But your data might be in jeopardy if you’ve used a popular background check service. A data breach exposed information from over 20 million users of a couple of the most popular services.
Keep reading for details on the breach and ways to protect your data.
Popular background check companies suffer data breach
TruthFinder and Instant Checkmate are websites that offer background check services to their subscribers. They gather information from various publicly accessible sources, including court records, criminal records, social media and others to provide detailed background reports on individuals.
The two companies merged with PeopleConnect Holdings in 2020. Recently, a hacking collective claimed to have stolen a TruthFinder and Instant Checkmate user database and shared it for free on criminal forums.
The database contains the details of over 20 million users who used the services from 2011 to 2019. Leaked data includes names, email addresses, phone numbers and hashed passwords.
Soon after the hacker shared the details, parent company PeopleConnect acknowledged the breach. “We have confirmed that the list was created several years ago and appears to include all customer accounts created between 2011 and 2019. The published list originated inside our company,” the company explains.
What to do after a massive data breach
Users of the background check services during the dates in question should be careful about any emails that might seem suspicious. The company stresses that TruthFinder and Instant Checkmate will never ask for your password, Social Security number or payment information over email or phone. If that happens, it is probably a scammer.
When there is a massive data breach like this, there are safety precautions you should take.
Steps to take following a data breach.
How to use Have I Been Pwned? to see if your info is floating around the web
Data breaches are almost always catastrophic events for privacy and security. Not only can millions of people end up with their personal data exposed, but these breaches can also spiral even further out of control once hackers start testing leaked passwords and email addresses on other platforms.