1B ID Records Leaked
An AI verification vendor leak exposed 1 billion identity records — including national ID numbers — creating fertile ground for synthetic identity fraud and SIM‑swap attacks reported. The scale of exposed records shifts SIU priorities toward cross‑database checks and adaptive verification to spot fabricated or composite identities.
Cybernews researchers found an unsecured MongoDB instance on November 11, 2025 and reported that IDMerit secured the server the next day; the exposed repository weighed roughly one terabyte and contained about three billion total records, of which ~1 billion were sensitive KYC entries spanning 26 countries (the U.S. accounted for ~203 million records). zyphe.com IDMerit issued statements denying confirmed customer-data exfiltration and suggested the public reporting may have been tied to an attempted shakedown, while independent coverage notes no public regulator investigations or consumer‑notification disclosures as of late February 2026. biometricupdate.com The leak included national ID numbers, phone numbers and telecom metadata—data elements cyber researchers say specifically enable SIM‑swap attacks, targeted phishing and the construction of synthetic identities—risks that insurers are already seeing reflected in a measured 49% projected rise in identity‑theft‑linked insurance fraud through June 30, 2025. cybernews.com IDMerit’s footprint across banks, fintech, telcos and regulated sectors turns vendor‑risk and KYC provenance into sales levers for InsurTech vendors; media coverage that shaped the narrative includes Cybernews (Feb 18, 2026), Tech outlets in March 2026 and BiometricUpdate’s vendor response—concrete hooks for ABM messaging aimed at SIU, claims and underwriting buyers on LinkedIn and in trade channels such as NICB and RGA research forums. cybernews.com
