Main data corridor hack impacts 364,000 individual data
NEWNow you can listen to News articles!
The personal data of the Americans are now distributed in more digital platforms than ever. From online purchase habits to fitness monitoring records, personal information ends in hundreds of company databases. While most people care about social networks or email hacks, a much less visible threat comes from data corridors.
I still find it difficult to believe that companies like this are allowed to operate with such little legal scrutiny. These companies trade with personal information without our knowledge or consent. What further baffles me is that the protection of the only thing that is fundamental for your business model is not taken seriously: the data.
Last year, we saw news of a massive data violation in a data corridor called National Public Data, which Exposed 2.7 billion records. And now another data corridor, Lexisnexis, an important name in the industry, has reported a significant violation that presented confidential information of more than 364,000 people.
Usa to the “Cyberguy Free Report: Obtain my expert technology advice, critical security alerts and exclusive offers, in addition to instant access to my Survival guide for the free final scam “ When you register!
A hacker at work (Kurt “Cyberguy” Knutsson)
Lexisnexis violation was not detected for months after vacation hack
Lexisnexis presented a Notice with Maine’s attorney general revealing that a hacker agreed to consumer data through a third -party software development platform. The violation occurred on December 25, 2024, but the company only discovered it months later. Lexisnexis was alerted on April 1, 2025 by an unnamed individual who claimed to have found sensitive files. It is not clear if this person was responsible for the violation or if he simply found the exposed data.
Massive data violation exposes 184 million passwords and session
A lexisnexis spokesman confirmed that the hacker obtained access to the company’s github account. This is a platform commonly used by developers to store and collaborate in code. Security guidelines repeatedly warn against the storage of confidential information in such repositories; However, errors as exposed access tokens and personal data files continue to occur.
Stolen data vary from person to person, but include complete names, birth dates, telephone numbers, email and email addresses, social security numbers and driver’s license numbers. Lexisnexis has not confirmed whether he received any rescue demand or had more contact with the attacker.
An individual who works on his laptop (Kurt “Cyberguy” Knutsson)
Personalized data extraction: Why is it important for online personal information
Why the lexisnexis trick is a larger threat than you think
Lexisnexis is not a family name for most people, but plays an important role in the way personal data is harvested and used behind the scene. The company extracts information from a wide range of sources, compiling detailed profiles that help other companies to evaluate risk and detect fraud. Its clients include banks, insurance companies and government agencies.
In 2023, the New York Times reported that several car manufacturers had been sharing handling data with lexisnexis without notifying vehicle owners. That information was then sold to insurance companies, which used it to adjust premiums based on individual driving behavior. The story made a thing clear. Lexisnexis has access to an amazing amount of personal details, including people who have never voluntarily committed to the company.
The application of the law also uses lexisnexis tools to dig up information about suspects. These systems offer access to telephone records, housing addresses and other historical data. While such tools can help research, a serious problem also highlights. When this very sensitive information is concentrated in one place, it becomes a single failure point. And as recent violation shows, that failure is no longer hypothetical.
A hacker at work (Kurt “Cyberguy” Knutsson)
Massive data violation exposes 184 million passwords and session
7 expert tips to protect your personal data after a violation of a data corridor
Keeping your personal safe data may seem overwhelming, but some practical steps can make a big difference to protect your privacy and reduce your fingerprint. Here are 7 effective ways to take control of your information and keep it out of the wrong hands:
1. Remove your Internet data: The most effective way to take control of their data and prevent data corridors from selling them is to opt for data removal services. While no service promises to eliminate all its Internet data, having an elimination service is excellent if you want to constantly monitor and automate the process of eliminating your information from hundreds of sites continuously for a longer period of time. See my best selections to obtain data removal services here.
Get a free scan To know if your personal information is now available on the web.
2. Privacy settings review: Take a few minutes to explore the Privacy and Safety Configuration in the services you use. For example, limit who can see your publications on social networks, disable unnecessary location by sharing on your phone and consider deactivating the customization of advertisements in accounts such as Google and Facebook. Most browsers allow you to block third -party cookies or delete follow -up data. The FTC suggests comparing the privacy notices of different sites and applications and choosing those that allow you to choose not to share it when possible.
3. Use privacy friendly tools: Install Browser extensions or accessories that block the ads and trackers (such as the origin of Ublock or the privacy tuition). You can change to a more private search engine (such as Duckduckgo or Brave) that does not register your queries. Consider using the “incognito” or private mode of a browser when you do not want to save your history, and regularly eliminate your cookies and cache. Even small habits, such as the session outside the accounts when they are not in use or that use a password administrator, make it less traceable.
Get the News business on the fly by clicking here
4. Be careful with phishing links and use strong antivirus software: Scammers can try to access their financial details and other important data using phishing links. The best way to safeguard the malicious links is to have the antivirus software on all its devices installed. This protection can also alert it to the PHISHING Electronic Correos and Ransomware scams, maintaining their personal information and their safe digital assets. Get my elections for the best antivirus protection winners 2025 for your Windows, Mac, Android and iOS devices.
5. Be careful with personal data: Think twice before sharing additional details. Do not complete online polls or questionnaires that request personal or financial information unless it trusts the source. Create separate email addresses for your records (so that marketing emails do not go to your main input tray). Just download applications from official stores and verify application permissions.
6. Opt from data runners lists: Many data corridors offer ways to choose not to participate or eliminate their information, although it can be a tedious process. For example, there are sites such as the Privacy Rights Compensation Store or the Blancas Pepes Exclusion Page that list popular corridors and their exclusion procedures. The FTC consumer guide, “Your guide to protect your online privacy”, Includes tips on how to opt for specific ads and eliminate people search databases. Keep in mind that you may have to repeat this every few months.
7. Be careful with mailbox communications: Bad actors can also try to scam it through Caracol mail. The data leak gives access to your address. They can impersonate people or brands that you know and use issues that require urgent attention, such as lost deliveries, account suspensions and security alerts.
The human resources firm confirms the 4m records set out in the main trick
Kurt key takeway
For many, the violation of lexisnexis can be the first time they realize how much of their data are in circulation. Unlike a social networks or bank platform, there is no clear relationship with the client with a data corridor, and that makes it more difficult to demand transparency. This incident should cause a serious discussion about what type of supervision is necessary in the industries that operate in the shadows. A more informed public and stronger regulation can be the only things that stop between personal data and permanent exposure.
Click here to get the News application
Should companies sell their personal information without their consent? Get us knowing in Cyberguy.com/contact.
To obtain more technological tips and safety alerts, subscribe to my free Cyberguy Report newsletter when you head Cyberguy.com/newsletter.
Ask Kurt or tell us what stories you would like us to cover.
Follow Kurt in his social channels:
- YouTube
Answers to the most informed Cyberguys questions:
- What is the best way to protect your MAC devices, Windows, iPhone and Android to be pirate?
- What is the best way to stay private, safe and anonymous while navigating the web?
- How can I get rid of robocalls with data elimination applications and services?
- How do I eliminate my private internet data?
New Kurt:
- Try the new Cyberguy games (crosswords, words searches, trivia and more!)
- Cyberguy exclusive coupons and offers
Copyright 2025 Cyberguy.com. All rights reserved.
Kurt “Cyberguy” Knutsson is a award -winning technological journalist who has a deep love for technology, equipment and devices that improve life with their contributions for News & News Business that start the mornings in “News & Friends”. Do you have a technological question? Get the free Kurt’s free newsletter, share your voice, an idea of the story or comment on Cyberguy.com.