This hack shows how important opting out of sharing your data is

A digital concept image of an online database
(Image credit: Getty Images)

A massive data breach of the "biggest database ever" that allegedly includes 4 TB worth of data has demonstrated how important opting out of sharing your data is.

The hacker allegedly responsible for the breach (who goes by "USDoD") originally posted the leak to notorious dark web data breach site, BreachForums, on April 8, 2024. In their post, USDoD said: "Hello Breachforums [sic] Im [sic] proud to say that I got access to the biggest database ever. This is the entire population of US, UK and CA".

The post went on to explain that the database was from National Public Data, a background check and individual lookup site that offers API lookups to businesses. USDoD claimed that the database contained 2.9 billion rows, had data from 2019-2024, and was 200 GB compressed or 4 TB uncompressed. USDoD has offered the sale of the database for $3.5 million and said they would provide "credentials" for the database's server to the buyer.

Now, vxunderground, the self-described "largest collection of malware source code, samples, and papers on the internet" has investigated the leak.

In a post on X (formerly Twitter) on June 2, vxunderground explained that they had discovered USDoD intended to leak the data and had requested a copy of the database to confirm the legitimacy of the hacker's claims.

Vxunderground noted that the files sent to them for verification was 277.1GB uncompressed and contained "real and accurate" data, confirmed via vxunderground looking up data from consenting individuals.

The data present for those in the US contained full names, addresses, address history going back more than three decades in some cases, and social security numbers. Through the database, vxunderground were also able to find the family members of those they looked up, including parents, siblings, aunts, uncles and cousins, even if these relatives were deceased. It was through looking up these consenting individuals that vxunderground was able to discover that the database contained information on those who were deceased, with some included having been dead for almost 20 years.

One of the main takeaways from this data breach is the fact that any person who used any kind of data opt-out services was not present on the database. Anyone who did not use data opt-out services was "immediately found" by vxunderground.

This clearly shows how important opting out of sharing your data is. If you're concerned about what data of yours is available, you can use data removal services

A great example of this is from one of the best VPN providers, Surfshark. With Surfshark's Incogni service (and other data removal services), you can delete your data from online databases, leaving you safe in the knowledge that your personal information is not available for anyone to see.

Olivia Powell
Tech Software Commissioning Editor

Olivia joined Tom's Guide in October 2023 as part of the core Tech Software team, and is currently VPN Commissioning Editor. She regularly uses VPNs to make sure they deliver what they promise, and specializes in testing VPNs with streaming sites.

Read more
Surfshark graphic of 2024 data breaches
Nearly 700 million American records were leaked in 2024
Cartoon of person peering through US flag
Western governments want your data and big tech is happy to provide – how to slow them down
An open lock depicting a data breach
The top 10 data breaches of 2024
Elon Musk holding chainsaw at CPAC
Musk's DOGE faces massive backlash and 12 data privacy lawsuits — how safe is your data?
Screen graphic showing data breach warning
5 worst data breaches of 2024 — including the mother of all breaches
Graphic of smartphone with cybersecurity shield
"Blatantly unlawful and horrifically intrusive" data collection is everywhere – how to fight back
Latest in Online Security
23andME box
23andMe has declared bankruptcy — here's how to delete your data now
A magnifying glass on top of the Steam logo in a web browser
Valve just pulled a malicious game demo spreading info-stealing malware from Steam
A man filing his taxes electronically on a laptop
AI-powered tax scams are here - how to stay safe from deepfakes, phishing and more this tax season
MacBook Pro 2023
New Mac attack is tricking users into thinking their computer is locked — how to stay safe
Hacker using a stolen social security card
Your Social Security number is a literal gold mine for scammers and identity thieves — here’s how to keep it safe
An open lock depicting a data breach
Half a million teachers hit in major data breach with SSNs, financial data and more exposed — what to do now
Latest in News
Kevin Costner in Field of Dreams
Why I watch ‘Field of Dreams’ on baseball’s opening day every year
Nintendo Switch 2
Nintendo Switch 2 pre-order date just revealed by Best Buy — here's when you can get yours
iphone 17 renders showing off rear and camera bump
iPhone 17 just tipped for this major display upgrade — thanks to Samsung
Galaxy S25 Edge dummy unit from side angle
Samsung Galaxy S25 Edge colors shown off in leaked renders — here’s the options
Nothing Phone 3a Pro rear side showing the camera
Nothing Phone 3a could start charging for using AI features — and I think that's a terrible idea
Motorola Razr Plus 2024 cover display
Motorola Razr 60 Ultra just tipped for a price hike — here's what you might pay