Last year, credit rating agency Equifax announced that hackers had stolen personal information for 143 million US consumers, including names, Social Security numbers, birthdates, addresses, drivers license numbers, and some credit card numbers. The Wall Street Journal writes that more information was leaked than was previously reported.

The revelation comes from a document submitted to the Senate Banking Committee, which says that hackers accessed additional personal information beyond what was initially reported. This includes tax identification numbers, which are used when someone doesn’t have a social security number, as well as e-mail addresses, credit card information, and some additional drivers license information — the states and dates in which the licenses were issued.

An Equifax spokesperson told the WSJ that a small number of e-mails were compromised, and that the company has sent notifications to those whose credit card information was affected.

The massive breach prompted Equifax CEO Richard Smith to resign weeks after the revelation in September, following the departure of the company’s chief information and chief security officers. The incident prompted intense scrutiny for the company and its cybersecurity policies, prompting an investigation from the Federal Trade Commission, and hearings from Congress.