Massive Equifax Data Breach Could Affect Half of the U.S. Population

  • A massive cyber security incident at Equifax — one of the largest credit reporting agencies in the United States — may have exposed private information belonging to 143 million people — nearly half of the U.S. population.
  • The agency said 209,000 credit card numbers were exposed in the breach, which includes customers in Canada and the United Kingdom.
  • As a credit reporting agency, Equifax gets information from credit card companies, banks, lenders, and retailers to help it determine a person’s credit score.
  • All U.S. customers will also be given a date when they can sign up for TrustedID Premier, which includes identity theft insurance, credit reports and a service that crawls the internet and alerts you if your Social Security number is posted somewhere online.
  • In addition, the company said it will mail notices to people who may have had their credit card numbers or personally identifying information exposed on dispute documents.

Equifax on Thursday revealed a breach that exposed 143 million people’s Social Security numbers, credit cards, driver’s license numbers and other private information.
Continue reading “Massive Equifax Data Breach Could Affect Half of the U.S. Population”

Massive Equifax Data Breach Could Affect Half of the U.S. Population

  • A massive cyber security incident at Equifax — one of the largest credit reporting agencies in the United States — may have exposed private information belonging to 143 million people — nearly half of the U.S. population.
  • The agency said 209,000 credit card numbers were exposed in the breach, which includes customers in Canada and the United Kingdom.
  • As a credit reporting agency, Equifax gets information from credit card companies, banks, lenders, and retailers to help it determine a person’s credit score.
  • All U.S. customers will also be given a date when they can sign up for TrustedID Premier, which includes identity theft insurance, credit reports and a service that crawls the internet and alerts you if your Social Security number is posted somewhere online.
  • In addition, the company said it will mail notices to people who may have had their credit card numbers or personally identifying information exposed on dispute documents.

Equifax on Thursday revealed a breach that exposed 143 million people’s Social Security numbers, credit cards, driver’s license numbers and other private information.
Continue reading “Massive Equifax Data Breach Could Affect Half of the U.S. Population”

Someone Made a Fake Equifax Site. Then Equifax Linked to It.

  • It would be just as easy for phishers to create their own versions of the Equifax page, and that would be bad news for anyone entering the information required to enroll in identity theft protection: their surname and the last six digits of their Social Security number.
  • #Equihax pic.twitter.com/T8jrhSfhqw —
    Nick Sweeting (@thesquashSH)
    Sept. 20, 2017

    “Their site is dangerously easy to impersonate,” Mr. Sweeting said in an email, noting that he had created the site solely to draw attention to the weakness of Equifax’s security.

  • An Equifax spokeswoman, Marisa Salcines, did not respond when asked why the company had created a separate website rather than a subdomain of equifax.com.That, cybersecurity experts said, was the key mistake.
  • Mr. Telang said Equifax’s actions suggested that the company had never anticipated or planned for a data breach.
  • The Equifax spokeswoman did not say whether any disciplinary action had been taken, and Mr. Sweeting said he hoped the employee had not been fired.

A software engineer created a fake version of the website to draw attention to the weak security of the real one. Phishers could easily do the same.
Continue reading “Someone Made a Fake Equifax Site. Then Equifax Linked to It.”