ID theft ring sold database with 200 million consumers' private data to 1,300 criminals

Mathew J. Schwartz, Contributor

March 11, 2014

1 Min Read

A Vietnamese identity theft ring allowed criminals to conduct searches on an Experian-owned database containing information on 200 million consumers.

That information was revealed in a March 3 federal court hearing in which Hieu Minh Ngo pleaded guilty to running a business from his home in Vietnam that provided access to US consumers' personally identifiable information (PII), security journalist Brian Krebs first reported.

According to the Justice Department, Ngo sold "fulls," referring to bundles of PII that can be used to commit bank fraud, credit card fraud, and to file fraudulent income tax return requests. The fulls were advertised via a number of underground cybercrime sites, including Superget.info.

Just how big was the data breach involving the Experian database? US attorney Arnold H. Huftalen told the court that Ngo had provided 1,300 criminals with access to 3.1 million US consumers' PII over an 18-month period, according to a transcript of the hearing.

Read the full article here.

Have a comment on this story? Please click "Add Your Comment" below. If you'd like to contact Dark Reading's editors directly, send us a message.

 

About the Author(s)

Mathew J. Schwartz

Contributor

Mathew Schwartz served as the InformationWeek information security reporter from 2010 until mid-2014.

Keep up with the latest cybersecurity threats, newly discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.

You May Also Like


More Insights