Overview
- Have I Been Pwned reported 17.6 million unique email addresses tied to the incident, a figure Prosper says it cannot yet validate.
- Exposed data reportedly includes names, dates of birth, government IDs, Social Security numbers, physical and email addresses, IP addresses, employment details, credit status information, income levels, and browser user-agent data.
- Prosper detected unauthorized activity on September 2 involving queries to databases holding customer and applicant information.
- Customer-facing operations continued without disruption, and Prosper says it has seen no evidence of unauthorized access to accounts or funds.
- The company reported the breach to authorities, is working with law enforcement, and plans to offer free credit monitoring once the scope is confirmed, as security experts warn of phishing and identity-theft risks.