Pdl Customer: Breach |work|

The breach is likely to draw scrutiny from state attorneys general and federal regulators, particularly given PDL’s role as a data processor for other businesses. Class-action lawsuits have already been filed in the Northern District of California, alleging negligence and violation of data protection laws.

The PDL customer breach highlighted a major grey area in the data broker industry. PDL co-founder Sean Thorne stated that once a customer receives data from their enrichment products, it resides on the customer’s servers and its security becomes the . pdl customer breach

For other organizations, the PDL breach serves as a textbook example of cloud security failure. The breach is likely to draw scrutiny from

The breach, which appears to have occurred in late March 2026, reportedly exposed sensitive personal information belonging to thousands of individuals, including names, physical addresses, phone numbers, email addresses, and in some cases, partial financial data. PDL co-founder Sean Thorne stated that once a

PDL, a prominent data brokerage and identity verification service, has confirmed a significant customer data breach after a threat actor leaked a portion of its internal database on a cybercrime forum over the weekend.

If you suspect your information was part of this exposure, you can use several tools to verify: Data Enrichment Exposure From PDL Customer Data Breach

Crucially, this was not a "hack" in the traditional sense where a criminal bypassed a firewall. Instead, the server was left completely unprotected—anyone with the IP address could access the entire database without a password. Although the server was not managed by People Data Labs itself, it contained indices explicitly labeled "PDL," suggesting it belonged to a customer who had purchased the data and failed to secure it.