700Credit experienced a data breach affecting over 5.8 million individuals due to a security vulnerability in a third-party API. The stolen data included sensitive personal information, prompting the company to offer free identity protection services. #700Credit #APIBreach #IdentityTheft
Keypoints
- The breach resulted from a security flaw in an API used by 700Creditβs integration partner.
- Approximately 20% of consumer data from May to October was exfiltrated by the attacker.
- The stolen information includes full name, address, date of birth, and Social Security Number.
- 700Credit is providing affected customers with a 12-month free credit monitoring service through TransUnion.
- The company has notified the FTC, NADA, and affected clients about the breach in accordance with legal requirements.