For the latest information about the September 17, 2025, cybersecurity incident, click here. Questions? See FAQs or call 833-918-9464. The line is open Monday through Friday, 8AM–5PM CT, excluding major US holidays.
For the latest information about the September 17, 2025, cybersecurity incident, click here. Questions? See FAQs or call 833-918-9464. The line is open Monday through Friday, 8AM–5PM CT, excluding major US holidays.
Answers to questions regarding Prosper’s cybersecurity incident
On September 1, 2025, Prosper discovered unauthorized activity on our systems. We acted quickly to stop the activity and enhance our security measures, and we began working with a leading cybersecurity firm to investigate what happened. We also reported the incident to law enforcement and offered our full cooperation. However, we did identify evidence that between June and August 2025, data containing personal information was obtained through queries on company databases that store customer and applicant data.
There was no evidence of unauthorized access to customer accounts and funds, and our customer-facing operations continue uninterrupted. Additionally, we continuously monitor accounts, which have strong safeguards in place to protect your fund.
Now that the analysis of the impacted data is complete, we have begun to provide notice to individuals whose personal information was determined to be affected, as required, where available. These individuals will receive an email or letter detailing the specific information that was impacted and providing further resources.
Resolving this incident has been our top priority and we continuously monitor accounts and have strong safeguards in place to protect customers’ funds.
We identified evidence that between June and August 2025, data containing personal information was obtained through queries on company databases that store customer and applicant data.
An outside criminal actor. Prosper reported the matter to law enforcement.
The following types of personal information were obtained: name, Social Security number / National ID Number, date of birth, bank account number, Prosper account number, other financial / credit application information, driver’s license number, marriage or birth certificate, passport number, tax information, payment card number.
Now that the analysis of the impacted data is complete, Prosper is notifying individuals whose personal information was affected as required via email or letter sent via the U.S. Postal Service, where available. These individuals will receive an email or letter detailing the specific information that was potentially impacted and provides further resources.
Prosper is notifying individuals whose personal information was affected as required via email or letter sent via the U.S. Postal Service, where available, starting December 9, 2025.
We believe that our efforts stopped the attack, and our cybersecurity experts have not seen any new unauthorized activity since September 2, 2025.
We are not aware of any examples of data misuse as a result of the incident.
Prosper retains customer information for varying periods of time to meet statutory record retention requirements and Prosper’s legitimate business needs.
In addition to using sophisticated tools to parse and search the potentially impacted data, Prosper conducted a manual review. This is a labor-intensive and time-consuming process that involves hundreds of hours of careful review and analysis.
Yes, law enforcement was notified, and we offered our full cooperation to them.
The individual notification we sent you provides additional steps that you can take to help protect yourself. Again, we deeply regret that this incident occurred and any concern it may cause.
You may obtain a copy of your credit report, free of charge, directly from each of the three nationwide credit reporting companies. To order your annual free report, please visit www.annualcreditreport.com, call toll free at 877-322-8228, or directly contact the three nationwide credit reporting companies:
|
Equifax PO Box 740241 Atlanta, GA 30374 800-685-1111 |
Experian PO Box 2002 Allen, TX 75013 888-397-3742 |
TransUnion PO Box 2000 Chester, PA 19016 800-916-8800 |
Yes, you can find details on the services being offered in the notification you received. We can also assist you in signing up for those services if you are interested.
We are not compensating individuals for identity theft protection or credit monitoring services purchased outside of the complimentary resources we have offered. Enrollment instructions are included in the notification sent to those individuals.
We cannot provide you with an activation code over the phone, but we can have another copy of the notification email or letter containing your code sent to you.
We encourage you to review the notification we sent you, which includes the details of the complimentary services we are offering that you can take to help protect yourself.
We would highly suggest you take advantage of Experian’s services. If you already have an Experian account, you will need to create a new username. If your username is your email address that you used to sign up, you will need to use a new email address to sign up for services.