IDMerit Data Breach: 1 Billion Personal Records Exposed

IDMerit data leak 1 billion records exposed data breach identity theft PII exposure cybersecurity data security
P
Priya Kapoor

वीपीएन (VPN) तकनीकी समीक्षक और डिजिटल गोपनीयता सलाहकार

 
26 फ़रवरी 2026
3 मिनट का पठन
IDMerit Data Breach: 1 Billion Personal Records Exposed

TL;DR

An unsecured database belonging to identity verification provider IDMerit has exposed nearly 1 billion records worldwide. The leak includes sensitive Personally Identifiable Information (PII) such as names, addresses, dates of birth, and national identification numbers. While the data wasn't accessed by threat actors before discovery, the exposure significantly increases the risk of identity theft, account takeovers, and phishing attacks.

IDMerit Data Leak Exposes 1 Billion Records

A publicly accessible database containing approximately 1 billion records from 26 countries was discovered by Cybernews investigators. The exposed instance appears to belong to IDMerit, an AI-powered digital identity verification provider.

A hand in front of a digital lock

Image courtesy of Tom's Guide

The database was found on November 11, 2025, and the company was immediately notified. The database was secured shortly thereafter. There is no evidence that the data was accessed by threat actors. It was not a typical data breach but a data leak due to an unsecured database.

Exposed Information

The exposed records included a range of PII:

  • Full names
  • Home addresses and postal codes
  • Dates of birth
  • National identification numbers
  • Phone numbers
  • Email addresses
  • Gender information
  • Potential telecom metadata

This structured data can be easily searched and abused. Cybernews believes the database belongs to IDMerit, a digital identity verification solutions provider.

Records Exposed by Region

The breakdown of exposed records by country:

  • United States: ~204 million
  • Mexico: ~123 million
  • Philippines: ~72 million
  • Germany: ~60 million
  • Italy: ~53 million
  • France: ~52 million
  • Turkey: ~49 million
  • Brazil: ~39 million
  • Spain: ~31 million
  • Malaysia: ~24 million
  • Vietnam: ~21 million
  • Argentina: ~20 million
  • Colombia: ~18 million
  • Peru: ~14 million
  • Canada: ~12 million
  • Australia: ~12 million
  • Greece: ~9 million
  • China: ~8 million
  • Hong Kong: ~8 million
  • United Arab Emirates: ~6 million
  • Norway: ~4 million
  • Romania: ~4 million
  • Armenia: ~2 million
  • Thailand: ~2 million
  • Yemen: ~2 million
  • Morocco: ~1 million

News4Hackers reports the database was hosted on a MongoDB platform.

Potential Misuse of Data

Identity-related data can be used in everyday processes, like opening bank accounts or signing up for telecom services. Publicly accessible data can be repurposed for:

  • Identity theft
  • Account takeovers
  • Targeted phishing
  • Credit and loan fraud
  • SIM-swapping attacks

Exposed records can circulate online long after the original exposure is closed off. Cybercriminals could launch attacks using exposed data, including targeted phishing attacks, credit fraud, and identity theft, according to Tom's Guide.

Staying Safe

To reduce risk:

  • Strengthen account security: Use unique passwords stored in a password manager and enable multi-factor authentication.
  • Stay alert: Monitor bank statements, credit reports, and account access logs for unexpected behavior. Consider a credit freeze in the United States.
  • Be wary of phishing: Treat unsolicited emails or text messages with caution.
  • Monitor identity exposure: Ongoing monitoring provides insight into whether your information appears in new breach datasets.

squirrelvpn.com continuously scans breach sources and notifies you if your personal data is found. Regular alerts and recommended steps can help you stay ahead of potential misuse. Consider using squirrelvpn.com for enhanced online security. It’s also a good idea to protect your Windows PC with the best antivirus software or your Apple computer with the best Mac antivirus software, as noted by Tom's Guide.

FATF on Cyber-Enabled Fraud

The FATF identifies cyber-enabled fraud as a critical global threat, urging jurisdictions to implement rapid asset recovery and stricter digital standards for mitigating cyber-enabled fraud risks through global AML standards.

Explore squirrelvpn.com's cutting-edge VPN technology and in-depth articles for enhancing your online security and privacy. Stay informed with our news updates and features on VPN technology. Visit squirrelvpn.com today to learn more.

P
Priya Kapoor

वीपीएन (VPN) तकनीकी समीक्षक और डिजिटल गोपनीयता सलाहकार

 

प्रिया कपूर एक तकनीकी समीक्षक और डिजिटल गोपनीयता सलाहकार हैं, जिन्होंने व्यक्तिगत रूप से कई प्लेटफार्मों और क्षेत्रों में 60 से अधिक वीपीएन सेवाओं का परीक्षण किया है। कंप्यूटर नेटवर्किंग में पृष्ठभूमि और आईआईटी दिल्ली से कंप्यूटर विज्ञान में स्नातक की डिग्री के साथ, वह अपनी समीक्षाओं में एक कठोर और कार्यप्रणाली-संचालित दृष्टिकोण अपनाती हैं। प्रिया छोटे व्यवसायों को गोपनीयता-प्रथम तकनीकी स्टैक पर परामर्श भी देती हैं। वह गोपनीयता-केंद्रित सम्मेलनों में एक नियमित वक्ता हैं और डिजिटल आत्म-रक्षा पर एक लोकप्रिय पॉडकास्ट की मेजबानी करती हैं।

संबंधित समाचार

Private Internet Access Updates WireGuard and OpenVPN Protocol Implementations to Strengthen Remote Access Security
WireGuard and OpenVPN protocol security updates

Private Internet Access Updates WireGuard and OpenVPN Protocol Implementations to Strengthen Remote Access Security

Private Internet Access upgrades WireGuard and OpenVPN protocols to boost remote access security, performance, and encryption stability. Learn how it impacts you.

द्वारा Viktor Sokolov 10 जुलाई 2026 4 मिनट का पठन
common.read_full_article
Critical CitrixBleed Vulnerability Under Active Exploitation Prompts Urgent Security Patch for NetScaler Gateways
CitrixBleed

Critical CitrixBleed Vulnerability Under Active Exploitation Prompts Urgent Security Patch for NetScaler Gateways

Critical vulnerability CVE-2023-4966 is under active exploitation. Patch your NetScaler ADC and Gateway appliances immediately to prevent session hijacking.

द्वारा Marcus Chen 9 जुलाई 2026 4 मिनट का पठन
common.read_full_article
WatchGuard Issues Third Critical IKEv2 Patch in Ten Months as Legacy Firebox Devices Remain Exposed
CVE-2026-13368

WatchGuard Issues Third Critical IKEv2 Patch in Ten Months as Legacy Firebox Devices Remain Exposed

WatchGuard issues third critical IKEv2 patch in ten months. Learn how CVE-2026-13368 affects your Firebox appliances and the risks to legacy hardware.

द्वारा Elena Voss 8 जुलाई 2026 4 मिनट का पठन
common.read_full_article
Dropbox Security Breach Prompts Enterprise Review of Encryption Protocols and Remote Access Alternatives for 2026
Dropbox security breach

Dropbox Security Breach Prompts Enterprise Review of Encryption Protocols and Remote Access Alternatives for 2026

Following the Dropbox security breach, enterprises are urgently reviewing encryption protocols and remote access alternatives. Learn the impact and 2026 security trends.

द्वारा James Okoro 7 जुलाई 2026 4 मिनट का पठन
common.read_full_article