LexisNexis Data Breach Exposes Personal Info of Over 360,000 People

Atlanta, May 2025 — LexisNexis Risk Solutions (LNRS), a major data broker based in Atlanta, is informing more than 364,000 people that their personal information was stolen during a data breach that happened late last year.

The breach took place on December 25, 2024, but the company says it didn’t find out about it until April 1, 2025. According to a notice sent to those affected and filed with the Maine Attorney General’s Office, hackers got access to LNRS data stored on a third-party software development platform—not on the company’s own systems.

The stolen data includes names, birth dates, phone numbers, email addresses, Social Security numbers, and driver’s license numbers. LNRS says no financial or credit card information was taken, and they haven’t found any signs that the stolen data has been used for further fraud.

The company explained that the breach happened after an unknown person reported that they had accessed some of LNRS’s information. It turns out the hackers got into the company’s GitHub account, where they found software files and personal data.

In total, 364,333 people were impacted by the breach. LNRS says it is offering two years of free identity protection and credit monitoring to those affected. The company has also reported the incident to law enforcement and notified regulators.

LexisNexis Risk Solutions collects and shares data with banks, insurance companies, healthcare providers, and government agencies to help them detect fraud and manage risk.