- The peer-to-peer lending platform Prosper has been hit by a data breach
- 17.6 million people are believed to be affected by the breach
- The affected information includes SSNs, addresses and income levels
Over 17.6 million people have reportedly had their personally identifiable information (PII) compromised by hackers after peer-to-peer lending service Prosper suffered a major cyber attack.
As revealed by the notification page Have I been Pwned, the breach was not disclosed until September 2025, when Prosper confirmed that it had detected unauthorized activity on its systems.
This led to the exposure of PII including, but not limited to, social security numbers, IP addresses, physical addresses, government-issued IDs, income levels, and email addresses.
Unauthorized access
As always, those affected in this incident are at risk of identity theft, as criminals can leverage their personal information to take out loans or credit cards in their name. But with a breach involving information like IDs, addresses, employment statuses and income levels – they could also be at risk of incredibly sophisticated social engineering attacks, fraud or even physical theft.
TechRadar Pro have contacted Prosper to try to confirm the validity of the 17.6 million figure, but we have yet to receive a response. The number, while decidedly significant, doesn’t come close to topping the charts – with several recent incidents claiming to affect over a billion records.
The company has confirmed it will offer free credit monitoring “as needed” once it has determined what data was affected and will monitor accounts with safeguards in place to protect customer funds.
The company has assured customers that their financial accounts were not accessed and that it is cooperating fully with law enforcement as it investigates the incident.
“There is no evidence of unauthorized access to customer accounts and funds and our customer-facing operations continue uninterrupted. We continuously monitor accounts and have strong security measures in place to protect customer funds,” the company confirmed on its dedicated FAQ page.
“While these attacks are becoming more common across many industries, we have a number of measures and technologies in place to prevent these types of incidents. We are improving our monitoring of our systems and have implemented enhanced security controls to reduce the likelihood of this happening again in the future.”
Follow TechRadar on Google News and add us as a preferred source to get our expert news, reviews and opinions in your feeds. Be sure to click the Follow button!
And of course you can too follow TechRadar on TikTok for news, reviews, video unboxings, and get regular updates from us on WhatsApp also.
