LexisNexis Risk Solutions, one of the largest data brokers in the U.S., has confirmed a serious data breach that may have exposed the personal information of over 364,000 people, including names, Social Security numbers, contact details, and driver’s license numbers.
According to a disclosure filed with the state of Maine and first reported by TechCrunch, the breach occurred on December 25, 2024, but was only discovered on April 1, 2025. LexisNexis is now starting to notify those affected.
The company said the breach happened after an unauthorized third party accessed data via a third-party software development platform. A spokesperson later confirmed to TechCrunch that the attacker gained access through the firm’s GitHub account, although GitHub and LexisNexis have not publicly commented further.
LexisNexis says it immediately launched an investigation and informed law enforcement after discovering the breach. The exact information exposed varies by individual.
If this article helped you, please consider supporting our work. Every small contribution keeps Abijita.com independent and running.
