VeriSource Services has confirmed that a cyberattack exposed the personal information of four million people. The VeriSource data breach affected employees and their dependents who used the company’s benefits services.
The attack happened on February 27, 2024. VeriSource discovered the breach just one day later, on February 28. After a detailed review, the company finished analyzing the stolen data by August 12, 2024. It then began notifying affected individuals about the incident.
However, not everyone could be contacted immediately. VeriSource said it had to work with client companies to gather updated contact information. That process ended on April 17, 2025. Notifications were then sent out as quickly as possible.
The stolen information includes names, addresses, dates of birth, gender details, and Social Security numbers. However, the exact data varies from person to person. VeriSource stressed that it has not seen any signs of the stolen data being used for fraud.
To help protect affected individuals, VeriSource is offering 12 months of free credit monitoring and identity protection. It also advised everyone to keep a close eye on their debit and credit card statements. Any unusual or suspicious activity should be reported to card issuers immediately.
The company also filed a breach notification with the Maine Attorney General’s Office. The filing confirmed that four million people were impacted by the VeriSource data breach.
Founded in 1997, VeriSource is based in Houston, Texas. It provides services like employee enrollment, benefits administration, ACA reporting, dependent verification, and HR outsourcing. Because of its wide range of services, the VeriSource data breach affected a large number of organizations across the United States.
Although VeriSource has not detected any misuse so far, cybersecurity experts caution that breaches involving Social Security numbers carry long-term risks. Stolen data may resurface months or years later, leading to identity theft or fraud.
The VeriSource data breach highlights the ongoing risks companies face when handling sensitive information. It also shows how important quick action, transparency, and strong cybersecurity measures are in today’s digital world.
VeriSource says it continues to improve its security systems to better protect client data and prevent future breaches.
