The breach is likely to draw scrutiny from state attorneys general and federal regulators, particularly given PDL’s role as a data processor for other businesses. Class-action lawsuits have already been filed in the Northern District of California, alleging negligence and violation of data protection laws.
April 14, 2026
Additionally, PDL has reset passwords for all affected user accounts and is enforcing multi-factor authentication (MFA) for any account that accesses its data brokerage portal going forward. pdl customer breach
PDL Confirms Customer Data Breach: Sensitive Information Exposed The breach is likely to draw scrutiny from
According to a statement released by PDL’s security team on April 13, an unauthorized third party gained access to a legacy customer database using compromised administrative credentials. The company first detected unusual activity on April 10, but a forensic investigation later revealed that the attacker had maintained access for approximately two weeks. ” said PDL spokesperson Maya Cortez.
National
“We immediately launched a full containment protocol upon discovery,” said PDL spokesperson Maya Cortez. “Our preliminary investigation indicates that the exposed data relates to a subset of enterprise customers who used our identity verification services between 2022 and 2025. We have since secured the affected server and are rotating all internal access keys.”