Customer Breach Updated — Pdl

This story is developing. PDL has promised a full public report within 45 days. We will update as more information becomes available.

The breach, which appears to have occurred in late March 2026, reportedly exposed sensitive personal information belonging to thousands of individuals, including names, physical addresses, phone numbers, email addresses, and in some cases, partial financial data. pdl customer breach

April 14, 2026

Additionally, PDL has reset passwords for all affected user accounts and is enforcing multi-factor authentication (MFA) for any account that accesses its data brokerage portal going forward. This story is developing

This incident serves as a reminder that even non-healthcare data brokers remain attractive targets for cybercriminals, and that legacy systems with weak security controls pose ongoing risks to customer privacy. The breach, which appears to have occurred in

PDL is notifying affected customers via email and has set up a dedicated response portal. The company is offering 24 months of complimentary credit monitoring and identity theft restoration services through a third-party provider.

According to a statement released by PDL’s security team on April 13, an unauthorized third party gained access to a legacy customer database using compromised administrative credentials. The company first detected unusual activity on April 10, but a forensic investigation later revealed that the attacker had maintained access for approximately two weeks.