News

LexisNexis Breach Worse Than Thought

By Nate Mook | Published April 12, 2005, 10:44 AM

LexisNexis said on Tuesday that a security breach which resulted in personal information of thousands of its customers potentially being compromised could be ten times worse than originally thought. An investigation has discovered that 310,000 U.S. citizens may have had their addresses and Social Security numbers accessed.

As reported last month, the break-in occurred at LexisNexis-owned Seisint, a company that specializes in creating databases from information it gets from the U.S. government. At the time it was believed only 32,000 customers were affected by the hack.

However, an investigation led by LexisNexis parent Reed Elsevier determined the issue was more widespread. Seisint databases were accessed 59 times using stolen passwords, and found possible fraudulent accesses in other LexisNexis databases as well.

In a statement, Reed Elsevier said it would contact the additional 278,000 individuals and offer free credit monitoring. Only two percent of the original 32,000 customers accepted the offer.

The recent revelation becomes yet another embarrassing incident for the data broker industry. In February, ChoicePoint revealed that 145,000 of its customers had their personal information stolen, which resulted in 750 reports of identity theft in California alone.

At this point, Reed Elsevier says no reports of identity theft stemming from the break-in have surfaced, although it will take pre-emptive measures to protect its customers.

Comments

View comments by with a score of at least

spiffyjeff
Apr 12, 2005 - 3:49 PM

How was this info compromised?

Score: 0

|
Post Reply
hlesesne
Apr 12, 2005 - 11:56 AM

I took a look at the TOS for using LexisNexis and posted them to my blog (with some short notes :-))... It made for some pretty entertaining reading.

I posted it over here:

http://hal.lco.net/Perma...-bb6b-d7248763745b.aspx

Score: 0

|
Post Reply
mjm01010101
Apr 12, 2005 - 1:32 PM

uh, pretty standard agreement. What exactly is so stunning about it? WHat difference does the date make? What does this have to do with cutomers' breach of data? Thousands of companies have copy/pasted agreements just like this.

Score: 0

|
Post Reply
hlesesne
Apr 12, 2005 - 2:38 PM

No real point to it :-).

Just found it interesting the types of expectations (standard boilerplate or not) LexisNexis has on their customers.

Score: 0

|
Post Reply

After telling US to mind its own business, Kroes slaps caps on Rambus royalties

The holder of many patents worldwide pertaining to DDR memory offered to reduce its royalty stake in that technology, and today the EU said yes.

Microsoft reorg creates the Server & Cloud Division

What does it mean for Ray Ozzie, Microsoft's chief software architect?

Betanews Podcast: Rupert Murdoch and the buying stuff online problem

We'll have a more difficult time paying for online news if the underlying protocol for online payment has a big gaping hole in it.

What does AT&T's 'Mark the Spot' app say about service quality?

That's a question for Betanews readers to answer in comments to this post.

DOJ: Microsoft interop docs are now 'substantially complete'

A major milestone in the US Government's oversight of Microsoft is passed, as the Justice Dept. is now saying the company's protocol documents make sense.

The $1 DVD rental debate: LA group says Redbox will lose movie makers $1B

A report from the Los Angeles Economic Development Corporation says cheap Redbox DVD rentals could seriously damage the movie business.

First impressions of Droid: Easy, breezy, friendly, if a little fat

Though it's not quite as well-polished as Apple's iPhone OS, the version of Android that Motorola's Droid phone sports is still a breeze to use.

EC's Kroes to US senators: Mind your own business on Oracle + Sun

UPDATED The EU's antitrust chief told the United States Senate Tuesday that any merger that takes place in the world is more her affair than theirs.

Windows fix for TLS security bug still forthcoming, won't be Tuesday

Anyone looking for a fix for last month's discovery of a potentially serious security hole in TLS and SSL may have to wait until everyone is ready to act together.

Not the first, not the last, technology predictions for 2010

Carmi Levy | Wide Angle Zoom: The real truth is probably that what went around in 2009, will come around to haunt us next year.

Google rolls out real-time search, Near Me Now, extended personalization

Over time, searches from PCs and mobile phones will grow even "more personalized." But what about user privacy and search results that give you "the truth"?