A significant data breach has allegedly surfaced online, with a threat actor claiming to possess a 2025 database containing the personal information of 10 million individuals from Experia USA. While the exact nature of Experia USA is not specified, its name bears a strong resemblance to Experian, one of the major multinational consumer credit reporting agencies. A breach of this magnitude, if confirmed to be linked to a major data broker or credit agency, would represent a severe threat to the privacy and financial security of millions of Americans.
The database was posted for sale on a dark web forum, with the threat actor providing a sample of the data as proof. The leak contains an extensive and alarming range of Personally Identifiable Information (PII). This type of detailed information is highly sought after by cybercriminals as it can be used for sophisticated phishing campaigns, identity theft, financial fraud, and other malicious activities. The sheer volume and granularity of the data make this alleged breach particularly dangerous for the individuals affected.
The leaked database reportedly includes the following sensitive information:
- Personal Identifiers: Full Name, Address, City, State, ZIP Code, Phone Number, Gender, and full Date of Birth.
- Financial Details: Household Income, Net Worth, Credit Lines, Credit Range, and Credit Rating.
- Household Information: Homeowner Status, Marital Status, Number of Children, Presence of Children, Number of Adults, and Dwelling Type.
- Behavioral and Interest Data: Mail Order Donor, Charitable Donor, Political Donor, Religious Donor, Veteran Status, and interests in Gardening, Home Improvement, Travel, Casino, and Hobbies.
- Demographic & Ethnic Data: Education Level, Ethnic Code, Ethnic Group, Language, and Religion.
- Digital Footprint: Email Address, URL, and IP Address.
