Three companies that resell credit information have settled charges related to security breaches that exposed customer data.

"The companies -- Washington state-based ACRAnet Inc. and SettlementOne Credit Corporation and Statewide Credit Services of California -- have agreed to obtain independent security audits every other year for the next two decades and develop comprehensive security programs designed to protect the confidentiality of the consumer data they sell," writes The Register's Dan Goodin. "The companies buy credit reports from the three nationwide consumer reporting agencies and combine them into special reports used by mortgage brokers."


"The companies collectively exposed more than 1,800 credit reports via compromised client networks, the US Federal Trade Commission said in a statement," Goodin writes.

Click here to read the article at The Register.

For regular security news updates, follow eSecurityPlanet on Twitter: @eSecurityP.