A Vietnamese identity theft ring allowed criminals to conduct searches on an Experian-owned database containing information on 200 million consumers.
That information was revealed in a March 3 federal court hearing in which Hieu Minh Ngo pleaded guilty to running a business from his home in Vietnam that provided access to US consumers' personally identifiable information (PII), security journalist Brian Krebs first reported.
According to the Justice Department, Ngo sold "fulls," referring to bundles of PII that can be used to commit bank fraud, credit card fraud, and to file fraudulent income tax return requests. The fulls were advertised via a number of underground cybercrime sites, including Superget.info.
Just how big was the data breach involving the Experian database? US attorney Arnold H. Huftalen told the court that Ngo had provided 1,300 criminals with access to 3.1 million US consumers' PII over an 18-month period, according to a transcript of the hearing.
Read the full article here.
Have a comment on this story? Please click "Add Your Comment" below. If you'd like to contact Dark Reading's editors directly, send us a message.