A threat actor is claiming to sell what they describe as a May 2026 database allegedly stolen from Prosper Marketplace, one of the largest peer-to-peer lending platforms in the United States. The forum listing advertises 890,472 purported customer records and claims the dataset contains extensive identity verification documents, financial information, credit data, and account details.
The claims have not been independently verified. The actor did not provide publicly available evidence capable of confirming possession of the full dataset described in the sale post.
The alleged breach is particularly notable because Prosper previously disclosed a major cybersecurity incident in 2025 involving unauthorized access to systems containing customer and applicant information. The company said at the time that personal data had been obtained by an unauthorized party, ultimately affecting millions of individuals.
According to the threat actor, the database contains 890,472 U.S. user profiles, including more than 610,000 allegedly fully verified KYC records. The listing further claims that more than 340,000 records contain payment card information and that a significant portion of affected users have credit scores exceeding 680.
The actor claims the data was extracted between May 18 and May 20, 2026, although no evidence was provided to support that timeline.
Financial and identity data allegedly included
The forum post describes a dataset containing a broad range of personal and financial information, including:
- Names, dates of birth, and Social Security number data
- Residential addresses
- Email addresses and phone numbers
- Government-issued identification documents
- Passport and driver’s license records
- Bank account information
- Credit card details
- Credit scores and lending histories
- Loan application and approval information
- Hashed passwords
- Security question data
- Device and login activity records
The threat actor is also advertising separate subsets of the alleged database, including records containing payment card information and profiles filtered by credit score.
Similar claims have targeted financial platforms
The alleged Prosper dataset joins a growing number of breach claims involving financial and lending platforms. Recent examples include an alleged breach affecting lender Addi that reportedly exposed credit and financial information, as well as other incidents involving large collections of consumer financial records.
Several of the data categories described in the Prosper listing overlap with information the company previously acknowledged may have been exposed during its 2025 incident, including identity documents, financial information, payment card data, and loan-related records.
For more on similar incidents, see ShinyHunters Claims 16M Record Breach of Addi Alleges Financial and Credit Data Exposure.
Potential fraud risks if authentic
If authentic, a dataset containing identity documents, banking information, credit histories, and lending records would present significant fraud risks. Such information could potentially be leveraged for identity theft, financial fraud, account takeover attempts, synthetic identity schemes, and highly targeted social engineering campaigns.
Financial services datasets are particularly valuable to cybercriminals because they often contain information that has already been verified during onboarding and compliance checks. When combined with lending histories and credit data, those records can become especially attractive for fraud operations.
Prosper has not addressed the new claim
BreachNews found no public statement from Prosper specifically addressing the alleged May 2026 database sale at the time of publication.
The company previously disclosed a cybersecurity incident discovered in September 2025 and said it engaged outside cybersecurity experts and notified law enforcement as part of its response.
Prosper had not issued any public statement at time of publication regarding the newly advertised dataset.
Readers concerned about identity theft risks following large-scale data breaches can review our guide on How to Freeze Your Credit After a Data Breach.
BreachNews will update this article if Prosper confirms, denies, or provides additional information regarding the claims.
