Brian Krebs has a must-read investigative piece about how ssndob.ms – an underground marketplace selling oodles of usable personal information (some of which we saw earlier this year on exposed.su) – gained access to major U.S. consumer and business data aggregators to obtain some of the data they were selling. LexisNexis, Dun & Bradstreet, Kroll Background America, Inc. – all had some of their databases compromised, although LexisNexis denies customer data were accessed or retrieved, and the other firms are noncommittal.
And to think we might not have known about this all except for the fact that ssdob.ms itself got plundered.
Read more on KrebsonSecurity.com