National Public Data Breach Exposed Social Security Numbers and Personal Records
National Public Data disclosed a security incident affecting a large repository of consumer background-check and people-search information, with exposed data reported to include highly sensitive personal identifiers such as Social Security numbers, names, mailing addresses, and other profile details. The company published a breach notice on its website, while an individual notification letter filed with the California Attorney General indicates affected residents were formally notified that their information may have been involved.
The incident drew attention because the compromised records appear to involve data commonly used for identity verification and fraud, increasing the risk of identity theft, account takeover, and social-engineering abuse. The notification materials show the breach response included direct notice to impacted individuals and guidance on protective steps such as monitoring accounts and credit activity, underscoring the seriousness of the exposure for consumers whose records were held by the data broker.
Get ahead of threats like this
Mallory correlates global threat intelligence with your attack surface — know if you’re exposed before adversaries strike.
How this story unfolded
2 events from the most recent confirmed update back to the earliest known activity.
National Public Data posts breach notice
National Public Data published a breach notice on its website disclosing a security incident. The exact incident date is not provided in the reference content, so the website notice publication date is used as the event date.
California individual notification letter issued for affected persons
A California individual notification letter was prepared or submitted regarding the National Public Data incident, indicating notification to affected individuals under state breach reporting requirements. The exact date is not visible from the provided reference metadata.
Sources
2 references tracked. Mallory keeps watching after this page renders.
See the full picture, correlated to your attack surface.
Map indicators from this story to your assets and identify affected systems in minutes.
Every observed campaign, victim, and pivot linked to actors named in this story.
Malware, exploits, and IOCs connected to the activity described here.
YARA, Sigma, and Snort rules deployed to your SIEM as soon as they’re published.
Get matching new stories delivered to your team as they break — not the next morning.
Ask questions about this story and take action on the answers.
Related stories
Other stories Mallory is tracking that overlap on entities, sources, or topic labels.
National Public Data Collapses After Massive Social Security Number Breach
National Public Data (NPD), a Florida-based background-check and data-broker firm owned by Jerico Pictures, filed for bankruptcy and later shut down after a breach exposed an enormous cache of personal information, including names, addresses, and Social Security numbers. The company tied the incident to a December 2023 intrusion by a third-party actor, while outside reporting said a `277.1 GB` dataset containing roughly `2.9 billion` records was later offered on the dark web for `$3.5 million` and may have affected people in the United States, United Kingdom, and Canada. The fallout quickly expanded beyond the initial disclosure. NPD had first indicated that about `1.3 million` people were impacted, but bankruptcy filings said potential liabilities could extend to hundreds of millions of individuals, far beyond the company’s ability to fund notifications, credit monitoring, litigation, and investigations. More than a dozen class-action complaints were filed, regulators in over 20 US states and the FTC were cited as possible sources of scrutiny, and reporting also pointed to alleged exposure of back-end database passwords. Consumers were urged to freeze credit with the major bureaus and monitor for identity theft as the company’s insurance reportedly denied coverage and its operations unraveled.
May 27, 2026
Sterling Seacrest Pritchard Email Breach Exposed SSNs of 7,420 People
Sterling Seacrest Pritchard, a U.S. insurance brokerage and risk management firm based in the Southeast, disclosed a breach involving its email system that exposed the personal information of **7,420 individuals**. The company said unauthorized access to or exfiltration from the email environment occurred between **August 12 and 13**, according to breach reporting cited in filings with the Maine Attorney General's Office. The compromised data included **names** and **Social Security numbers**, with **20 Maine residents** confirmed among those affected. Sterling Seacrest Pritchard said it had not identified evidence of misuse at the time of disclosure, but it offered eligible individuals complimentary **credit monitoring**, **fraud consultation**, and **identity theft restoration** services, while urging affected people to closely review bank and payment account activity and report suspicious transactions quickly.
Mar 30, 2026
Sensitive Personal Data Exposed in DC Health Link and Doxbin Breaches
DC Health Link and Doxbin were added as sensitive breach incidents after large datasets containing personal information were exposed online. DC Health Link disclosed a breach discovered in March 2023 after data was reportedly posted to a well-known breach forum, exposing about **48,000 unique email addresses** alongside names, genders, dates of birth, home addresses, phone numbers, and **Social Security numbers**; the posting was linked in reporting to **`IntelBroker`**. Doxbin, a doxing website, was also listed for a breach affecting more than **370,000 unique email addresses** after data from January 2022 leaked. The exposed records included account details such as usernames, password hashes, and browser user agents, as well as highly sensitive victim information contained in doxes, including names, physical addresses, and phone numbers. Both incidents were classified as **sensitive**, meaning the compromised data is not publicly searchable through the breach-notification service.
Mar 27, 2026