TransUnion

TransUnion, a major U.S. consumer credit reporting agency, suffered a data breach on **July 28, 2025**, exposing the personal information of **over 4.4 million Americans**. The incident stemmed from unauthorized access to a **third-party application** linked to its U.S. consumer support operations. While TransUnion stated the breach involved only **limited personal data**—excluding core credit reports or financial details—the exact nature of the compromised information remains undisclosed. The company is offering **24 months of free credit monitoring and identity theft protection** to affected individuals. The breach follows a pattern of recent attacks targeting **Salesforce-linked systems**, though TransUnion has not confirmed a direct connection. This marks another security lapse for the firm, which previously faced breaches in its **South African and Canadian branches** involving customer data exposure.

Source: https://www.bleepingcomputer.com/news/security/transunion-suffers-data-breach-impacting-over-44-million-people/

TPRM report: https://www.rankiteo.com/company/transunion

"id": "tra517082825",
"linkid": "transunion",
"type": "Breach",
"date": "7/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"

{'affected_entities': [{'customers_affected': '4.4 Million (U.S. Consumers)',
                        'industry': 'Consumer Credit Reporting',
                        'location': 'United States (Global Operations in 30 '
                                    'Countries)',
                        'name': 'TransUnion',
                        'size': '13,000 Employees, $3 Billion Annual Revenue',
                        'type': 'Corporation'}],
 'attack_vector': ['Third-Party Application Vulnerability'],
 'customer_advisories': ['24 Months of Free Credit Monitoring and Identity '
                         'Theft Protection Offered'],
 'data_breach': {'data_exfiltration': True,
                 'number_of_records_exposed': '4,400,000',
                 'personally_identifiable_information': True,
                 'sensitivity_of_data': 'Moderate (No Credit Reports or Core '
                                        'Credit Information Exposed)',
                 'type_of_data_compromised': ['Personal Information (Limited, '
                                              'Undisclosed Specifics)']},
 'date_detected': '2025-07-30',
 'description': 'Consumer credit reporting giant TransUnion suffered a data '
                'breach exposing the personal information of over 4.4 million '
                'people in the United States. The breach occurred on July 28, '
                '2025, and was discovered two days later. It involved a '
                "third-party application serving the company's U.S. consumer "
                'support operations. The exposed data was described as '
                "'limited personal information,' though specifics were not "
                'disclosed. No credit reports or core credit information were '
                'compromised. TransUnion is offering 24 months of free credit '
                'monitoring and identity theft protection to affected '
                'individuals. The incident may be linked to a wave of '
                'Salesforce data theft attacks conducted by groups like Shiny '
                'Hunters and UNC6395.',
 'impact': {'brand_reputation_impact': 'Potential Reputation Damage '
                                       '(Historical Breaches in South Africa '
                                       'and Canada)',
            'data_compromised': ['Limited Personal Information'],
            'identity_theft_risk': 'High (4.4 Million Individuals Affected)',
            'systems_affected': ['Third-Party Application (Consumer Support '
                                 'Operations)']},
 'initial_access_broker': {'entry_point': ['Third-Party Application (Consumer '
                                           'Support Operations)']},
 'investigation_status': 'Ongoing (Potential Link to Salesforce Attacks Under '
                         'Investigation)',
 'motivation': ['Data Theft', 'Extortion (suspected)'],
 'ransomware': {'data_exfiltration': True},
 'references': [{'source': 'BleepingComputer'},
                {'source': 'TransUnion Data Breach Notice (Sample)'},
                {'source': 'Office of the Maine Attorney General Filing'}],
 'regulatory_compliance': {'regulatory_notifications': ['Filing to Office of '
                                                        'the Maine Attorney '
                                                        'General']},
 'response': {'communication_strategy': ['Data Breach Notifications to '
                                         'Affected Individuals',
                                         'Public Disclosure via Maine AG '
                                         'Filing'],
              'incident_response_plan_activated': True,
              'remediation_measures': ['Offering 24 Months of Free Credit '
                                       'Monitoring and Identity Theft '
                                       'Protection']},
 'threat_actor': ['Shiny Hunters (suspected)', 'UNC6395 (suspected)'],
 'title': 'TransUnion Data Breach Exposes Personal Information of 4.4 Million '
          'U.S. Consumers',
 'type': ['Data Breach', 'Unauthorized Access']}