By 
So, a Florida-based firm that handles a LOT of background checks got hacked. And as is often the case, this was an inside job, with someone exfiltrating the data.
News like this makes me wonder how much further we can scale with the number of persons affected by a breach. In the past, we’ve seen breaches affecting thousands, even millions, but this time, National Public Data (NPD) is hitting us with billions.
Ironically, the source of this alarming news wasn’t a company announcement or a news report, but a class-action lawsuit filed in Florida.
An exaggerated number of personal records may soon be leaked online. We know this because of a threat actor, USDoD, who claimed to be selling 4 TB worth of data extracted from NPD:
Overall, this breach possibly affects basically the entire population of the USA, UK, and Canada, and then some.
The fact that the threat actor is demanding payment in Bitcoin or Monero makes me wonder why Bitcoin is still used on the dark web. Perhaps stealth addresses combined with coin mixing provide enough time to convert to a more privacy-focused cryptocurrency.
Source: https://www.theregister.com/2024/06/03/usdod_data_dump/