Credit report and identity verification services provider 700Credit has disclosed a data breach impacting more than 5.8 million individuals.
700Credit is the largest provider of credit checks, identity verification, fraud detection, and compliance services for automotive, marine, powersports, and RV dealers in North America. It serves roughly 18,000 dealerships.
The incident, the company says, was identified on October 25, and involved a compromised third-party API linked to the 700Credit web application.
The hackers, compromised a partner’s system in July 2025, and gained access to the API, which allowed them to access consumers’ personal information as per reports.
“The investigation determined that certain records in the web application relating to customers of its dealership clients were copied without authorization,” the company says in a notification letter to the impacted individuals, a copy of which was filed with the Maine Attorney General’s Office.
The hackers downloaded information collected from dealers between May 2025 and October 2025, Michigan Attorney General Dana Nessel told reporters.
The compromised personal information, 700Credit says, varies by individual, but generally includes names, addresses, dates of birth, and Social Security numbers.
The company released notice says that its internal network was not compromised, and that the incident was limited to the 700Dealer.com application layer.
700Credit started notifying the impacted dealership clients of the event on November 21 and will begin sending written notification letters to the affected people on December 22.
In collaboration with the National Automobile Dealers Association (NADA), the company filed a consolidated breach notification with the Federal Trade Commission (FTC).
It also notified attorney general’s offices across the US of the incident and reported the attack to the FBI.
The company told the Maine AGO that 5,836,521 individuals were affected and that it is providing them with 12 months of free credit monitoring and identity restoration services.
“It is important that anyone affected by this data breach takes steps as soon as possible to protect their information. A credit freeze or monitoring services can go a long way in preventing fraud, and I encourage Michiganders to use the tools available to keep their identity safe,” Attorney General Nessel said.
