Brian Kreb presents some evidence that the breach involving Court Ventures/U.S. InfoSearch/Experian* (discussed elsewhere on this blog) did result in harm to individuals, depite an Experian executive telling Congress in December 2013 that there had been no reports of harm from the breach.
Of course, it never made any sense to any of us that criminals would be purchasing “fullz” and then not using them in ways that harmed consumers, but it’s nice to see an actual refutation of Experian’s claim about no harm.
*Note: As I’ve discussed before, it’s difficult to say whose breach this is, legally, as two of the parties involved offer their own legal perspectives and point their fingers at other parties.