TransUnion breach affects 4.4 million in broader Salesforce attack wave

Credit reporting firm TransUnion disclosed that 4.4 million people had their personal information compromised in a July 28 data breach involving a third-party application used for consumer support operations. The stolen data included names, Social Security numbers, dates of birth, addresses, email addresses, and phone numbers, though TransUnion’s core credit database remained unaffected. Security researchers linked the incident to a broader Salesforce data theft campaign attributed to the ShinyHunters extortion group, which has also targeted major companies including Google, Adidas, Cisco, and luxury brands like Dior and Louis Vuitton. TransUnion is providing affected individuals with 24 months of free credit monitoring and fraud assistance while working with law enforcement to investigate the attack.

Read more:

https://www.securityweek.com/transunion-data-breach-impacts-4-4-million/