Connecticut, Illinois to investigate massive breach at Experian co.

Share this article:
Sally Beauty confirms that customer data was accessed in breach
The breach struck Experian subsidiary, Court Ventures.

According to reports, a multistate investigation has been launched, after an Experian subsidiary, Court Ventures, was struck by a breach impacting more than 200 million Americans.

On Thursday, Reuters reported that attorneys general in Connecticut, Illinois, and potentially other states, planned to look into a major identity theft case where sensitive information, including Social Security numbers, addresses, dates of birth, phone numbers and email addresses of consumers, was exposed to criminals.

In October, security journalist Brian Krebs detailed how Experian indirectly sold consumer data to an ID theft service run by a Vietnamese national Hieu Minh Ngo. Court documents revealed that Ngo, posing as a private investigator, paid Court Ventures so he could access sensitive database information available to the firm.

Last month, Ngo pleaded guilty in a federal New Hampshire court to devising the scheme.

According to the Thursday Reuters report, state investigations will likely center on whether credit bureau Experian and other involved companies followed proper data security and breach disclosure laws.

On Friday, Jaclyn Falkowski, a spokeswoman for the Connecticut Attorney General's office, confirmed with SCMagazine.com via phone that “Connecticut will be inquiring on the breach,” but that the office had “no further comment,” on the matter.

That day, Maura Possley, a spokeswoman for the Illinois Attorney General's office, told SCMagazine.com that its probe was “part of a multistate investigation.”

“We are investigating based on reports of a data breach involving Experian,” Possley said.

Share this article:

Sign up to our newsletters

More in News

EFF intros wireless router software to boost industry standard

EFF intros wireless router software to boost industry ...

This weekend, the digital rights group released a "hacker alpha" version of its Open Wireless Router software.

Breaches driving organizational security strategy, survey indicates

Breaches driving organizational security strategy, survey indicates

CyberArk interviewed 373 IT security executives and other senior management in North America, Europe and the Asia-Pacific as part of its eighth annual Global Advanced Threat Landscape survey.

Siemens industrial products impacted by four OpenSSL vulnerabilities

The vulnerabilities can be exploited remotely, and fairly easily, by an attacker to hijack sessions and crash the web server of the product.