Equifax, one of the largest credit rating and reporting firm in the US, has become the latest company to reveal a data breach.
The incident was discovered on July 29, according to a company statement released after market close on Thursday.
The Atlanta, Georgia-headquartered company said that hackers had between mid-May through July exploited a vulnerability on its website to access certain files.
Also: Security firm Mandiant said to be helping Equifax in hack aftermath | CNET: Find out if you were one of 143 million hacked
The data includes names, social security numbers, birth dates, home addresses, and in some cases, driving license information.
It's thought to be the largest data breach reported so far this year.
As many as 143 million Americans are said to be affected, the company said, representing about half of the US population.
The company said that 209,000 credit card numbers were accessed, and other personally identifiable information on 182,000 consumers were accessed by the hackers.
Some UK and Canadian residents are also affected, the statement confirmed.
"This is clearly a disappointing event for our company, and one that strikes at the heart of who we are and what we do. I apologize to consumers and our business customers for the concern and frustration this causes," said Richard Smith, Equifax chief executive.
A website has been set up to help consumers determine if they are affected.
At the time of writing, the company is already down more than 6 percent in after-hours trading.
You can send tips securely over Signal and WhatsApp at 646-755–8849. You can also send PGP email with the fingerprint: 4D0E 92F2 E36A EC51 DAAE 5D97 CB8C 15FA EB6C EEA5.
ZDNET INVESTIGATIONS
- Researchers say a breathalyzer has flaws, casting doubt on countless convictions
- Lawsuits threaten infosec research — just when we need it most
- NSA's Ragtime program targets Americans, leaked files show
- Leaked TSA documents reveal New York airport's wave of security lapses
- US government pushed tech firms to hand over source code
- Millions of Verizon customer records exposed in security lapse
- Meet the shadowy tech brokers that deliver your data to the NSA
- Inside the global terror watchlist that secretly shadows millions
- 198 million Americans hit by 'largest ever' voter records leak
- Britain has passed the 'most extreme surveillance law ever passed in a democracy'
- Microsoft says 'no known ransomware' runs on Windows 10 S — so we tried to hack it
- Leaked document reveals UK plans for wider internet surveillance
Join Discussion