Credit bureau TransUnion has disclosed a data breach that compromised the personal information of over 4.4 million consumers.
In notifying law enforcement about the breach, TransUnion reported that the attackers gained access through a third-party application that housed customer data for its U.S. consumer support operations. While the company has not specified what information was accessed, it stated that “no credit information was compromised.”
TransUnion is one of the largest credit reporting agencies in the United States, managing financial data for more than 260 million Americans. This is not the first incident of sensitive data exposure for the firm; in 2022, it faced a $15 million ransomware demand following the theft of 54 million customer records from a server operated in South Africa.