Credit Agency Equifax Hacked - 143 Million US Residents

Lol. Of course.
Ahhh it gets even better: I just tried some random numbers multiple times and received different results as well.


TechCrunch: Equifax Hack-Checking Web Site Is Returning Random Results
from the discredit-reports dept.
An anonymous reader quotes security researcher Brian Krebs:The web site that Equifax advertised as the place where concerned Americans could go to find out whether they were impacted by this breach -- equifaxsecurity2017.com -- is completely broken at best, and little more than a stalling tactic or sham at worst. In the early hours after the breach announcement, the site was being flagged by various browsers as a phishing threat. In some cases, people visiting the site were told they were not affected, only to find they received a different answer when they checked the site with the same information on their mobile phones.

TechCrunch has concluded that "the checker site, hosted by Equifax product TrustID, seems to be telling people at random they may have been affected by the data breach." One user reports that entering the same information twice produced two different answers. And ZDNet's security editor reports that even if you just enter Test or 123456, "it says your data has been breached." TechCrunch writes:The assignment seems random. But, nevertheless, they were still asked to continue enrolling in TrustID. What this means is not only are none of the last names tied to your Social Security number, but there's no way to tell if you were really impacted. It's clear Equifax's goal isn't to protect the consumer or bring them vital information. It's to get you to sign up for its revenue-generating product TrustID.
Meanwhile, one web engineer claims the secret 10-digit "security freeze" PIN being issued by Equifax "is just a timestamp of when you made the freeze."
 
Ahhh it gets even better: I just tried some random numbers multiple times and received different results as well.


TechCrunch: Equifax Hack-Checking Web Site Is Returning Random Results
from the discredit-reports dept.
An anonymous reader quotes security researcher Brian Krebs:The web site that Equifax advertised as the place where concerned Americans could go to find out whether they were impacted by this breach -- equifaxsecurity2017.com -- is completely broken at best, and little more than a stalling tactic or sham at worst. In the early hours after the breach announcement, the site was being flagged by various browsers as a phishing threat. In some cases, people visiting the site were told they were not affected, only to find they received a different answer when they checked the site with the same information on their mobile phones.

TechCrunch has concluded that "the checker site, hosted by Equifax product TrustID, seems to be telling people at random they may have been affected by the data breach." One user reports that entering the same information twice produced two different answers. And ZDNet's security editor reports that even if you just enter Test or 123456, "it says your data has been breached." TechCrunch writes:The assignment seems random. But, nevertheless, they were still asked to continue enrolling in TrustID. What this means is not only are none of the last names tied to your Social Security number, but there's no way to tell if you were really impacted. It's clear Equifax's goal isn't to protect the consumer or bring them vital information. It's to get you to sign up for its revenue-generating product TrustID.
Meanwhile, one web engineer claims the secret 10-digit "security freeze" PIN being issued by Equifax "is just a timestamp of when you made the freeze."
___________________
Hey Web... thanks for staying on top of this.
 
Equifax CEO suddenly retires following an epic data breach affecting 143 million people
  • The sudden departure comes amid intensifying scrutiny of the breach and the company's handling of it.
  • Smith was named chairman and CEO in 2005 after more than two decades as an executive of General Electric.
  • In a regulatory filing on Tuesday, the company said Smith will not get a bonus for this year.
  • Equifax shares have dropped 27 percent in September after the company disclosed the breach.
 
Equifax CEO walks away with $18 million after data breach affecting half the US occurs on his watch.
The credit reporting company said he was retiring effective immediately and he wouldn't get a bonus for this year, though he is eligible to walk away with at least $18.4 million in pension benefits.

F THAT
 
All the people who have been affected by this should have the right to whoop this d*k bags ***. Actually they should just do it.
 
Equifax Adds 2.4 million People to list of Those Affected by 2017 Data Breach
The Equifax (EFX) security breach that exposed the information of over 100 million American's was worse than previously reported, Equifax revealed Thursday.

The company says it uncovered an additional 2.4 million people that were affected by the 2017 hack. The additional people brings the number of those affected to 147.9 million from the previous estimate of 145.5 million.

This is the second time the company has revised its numbers. Originally Equifax said that about 143 million Americans had been affected.

The Wall Street Journal reported in February that hackers accessed more consumer information than the company publicly disclosed last year, including tax identification numbers, email addresses and driver's license information.
 
Got a voicemail this morning on my work phone (not cell phone) from Equifax wanting to verify someone's employment... Damn spam lol
 
Got a voicemail this morning on my work phone (not cell phone) from Equifax wanting to verify someone's employment... Damn spam lol
Did you reverse search the #?
 
Former Equifax Manager Charged With Insider Trading
FOR IMMEDIATE RELEASE
2018-115

Washington D.C., June 28, 2018 —

The Securities and Exchange Commission today charged a former Equifax manager with insider trading in advance of the company’s September 2017 announcement of a massive data breach that exposed Social Security numbers and other personal information of approximately 148 million U.S. customers. This is the second case the SEC has filed arising from the Equifax data breach. In March, the former chief information officer of Equifax’s U.S. business unit was charged with insider trading.

In a complaint filed in federal court in Atlanta today, the SEC charged that Equifax software engineering manager Sudhakar Reddy Bonthu traded on confidential information he received while creating a website for consumers impacted by a data breach.

According to the complaint, Bonthu was told the work was being done for an unnamed potential client, but based on information he received, he concluded that Equifax itself was the victim of the breach. The SEC alleges that Bonthu violated company policy when he traded on the non-public information by purchasing Equifax put options. Less than a week later, after Equifax publicly announced the data breach and its stock declined nearly 14 percent, Bonthu sold the put options and netted more than $75,000, a return of more than 3,500 percent on his initial investment.

Bonthu, 44, was terminated from Equifax in March after refusing to cooperate with an internal investigation into whether he had violated the company’s insider trading policy.

“As we allege, Bonthu, who was entrusted with confidential information by his employer, misused that information to conclude that his company had suffered a massive data breach and then sought to illegally profit,” said Richard R. Best, Director of the SEC’s Atlanta Regional Office. “Corporate insiders simply cannot abuse their access to sensitive information and illegally enrich themselves.”

In a parallel proceeding, the U.S. Attorney’s Office for the Northern District of Georgia filed criminal charges against Bonthu.

To settle the SEC’s civil charges, Bonthu has agreed to a permanent injunction and to return his allegedly ill-gotten gains plus interest. The settlement is subject to court approval.

The SEC’s investigation, which is continuing, has been conducted by Elizabeth Skola and Justin Jeffries. The litigation is being led by Shawn Murnahan and Graham Loomis. The SEC appreciates the assistance of the U.S. Attorney’s Office for the Northern District of Georgia, Federal Bureau of Investigation, and Financial Industry Regulatory Authority.

###
 
Equifax will pay up to 700 million in restitution

A national settlement has been reached with Equifax — the consumer credit reporting agency whose 2017 data breach exposed the personal information of over half of American adults.

In the largest data-breach settlement in history, the company will pay up to $700 million in restitution and penalties.

$300 million will be directed to a fund to compensate consumers impacted by the breach. Equifax will add up to $125 million to the fund if the initial amount is exhausted. Cash payments of a maximum of $20,000 per person will be available for consumers who had out-of-pocket expenses as a result of the breach.

In a statement, Attorney General Reyes urged Users to take advantage of the settlement to access free credit monitoring, identity theft protection and other services and reimbursements provided by Equifax.

Additionally, $175 million will be paid to the states. Another $100 million will be paid in penalties to the Consumer Financial Protection Bureau.

The settlement comes as the result of a nearly two-year investigation launched by a coalition of state attorneys general shortly after the 2017 incident.

A federal court must grant final approval of the settlement.
 
The official settlement website, www.equifaxbreachsettlement.com, has been posted and is accepting claims. To confirm you're eligible to file a claim, enter your last name and the last six digits of your Social Security number on the site or call the Settlement Administrator at 1-833-759-2982.
 
The official settlement website, www.equifaxbreachsettlement.com, has been posted and is accepting claims. To confirm you're eligible to file a claim, enter your last name and the last six digits of your Social Security number on the site or call the Settlement Administrator at 1-833-759-2982.

How do I know you are serious? Could be phishing for my info!
 
I didn't sign up yet, I know muffin Head is very sneaky! I don't think the 700 million has yet been paid, but I would want to be first on the list to get $125 cash-not interested in credit monitoring that's just another scam!:hmmm?:
 
Phew.

"Based on the information you provided, our records indicate that your personal information was not impacted by this incident."
 
Back
Top