Results 1 to 11 of 11

Thread: Equifax Data Breach

Hybrid View

Previous Post Previous Post   Next Post Next Post
  1. #1
    Member
    Join Date
    Apr 2006
    Location
    Colombia
    Age
    32
    Posts
    6,344

    Sports Logo Sports Logo Sports Logo

    Default Equifax Data Breach

    https://www.reuters.com/article/us-e...-idUSKCN1BJ1NF

    (Reuters) - Equifax Incís shares tumbled 18 percent on Friday after the provider of consumer credit scores revealed that hackers may have stolen personal details of nearly half of the American adult population in one of the largest data breaches.

    Equifax said on Thursday it discovered the breach on July 29 and that criminals exploited a vulnerability in a website application to gain access to certain files that included names, Social Security numbers and driversí license numbers.

  2. #2
    Member
    Join Date
    Apr 2006
    Location
    Colombia
    Age
    32
    Posts
    6,344

    Sports Logo Sports Logo Sports Logo

    Default Re: Equifax Data Breach

    Three days after Equifax discovered the breach, three top Equifax executives, including Chief Financial Officer John Gamble and a president of a unit, sold Equifax shares or exercised options to dispose off stock worth about $1.8 million, regulatory filings show. It was not clear whether these transactions were part of a pre-arranged sales plan.
    Equifax said in a statement that the executives were not aware that an intrusion had occurred when they sold their shares.

  3. #3

    Default Re: Equifax Data Breach

    Quote Originally Posted by vapacersfan View Post
    This quote is hidden because you are ignoring this member. Show Quote
    [COLOR=#353C41]Equifax said in a statement that the executives were not aware that an intrusion had occurred when they sold their shares.
    Do they really expect anyone to believe this ?? If it was done 'properly', it would be next to impossible to prove. But - come on .......

  4. The Following User Says Thank You to PacerDude For This Useful Post:


  5. #4
    Member
    Join Date
    Apr 2006
    Location
    Colombia
    Age
    32
    Posts
    6,344

    Sports Logo Sports Logo Sports Logo

    Default Re: Equifax Data Breach

    https://trustedidpremier.com/eligibi...igibility.html

    You can check if you were impacted at the link above. When you do that, you can enroll in Equifax credit monitoring at the same time (which is a service that I believe they would usually charge for).

  6. #5
    Member owl's Avatar
    Join Date
    Mar 2004
    Posts
    7,243

    Default Re: Equifax Data Breach

    Quote Originally Posted by vapacersfan View Post
    This quote is hidden because you are ignoring this member. Show Quote
    https://trustedidpremier.com/eligibi...igibility.html

    You can check if you were impacted at the link above. When you do that, you can enroll in Equifax credit monitoring at the same time (which is a service that I believe they would usually charge for).

    I checked at the Equifax site and it said I was at risk. Clicked the enroll button and it gave me a future date when I could continue the enrollment process. About 4 days from now. System must be getting crushed. I tried to go online to freeze my account at transunion and it said I was unsuccessful? Too busy or they do not want people doing that.
    {o,o}
    |)__)
    -"-"-

  7. #6
    Member
    Join Date
    Apr 2006
    Location
    Colombia
    Age
    32
    Posts
    6,344

    Sports Logo Sports Logo Sports Logo

    Default Re: Equifax Data Breach

    If you were affected, and sign up for their free credit monitoring offer, they're trying to slip it by that you'll be auto-enrolled and billed after one year.

    http://www.huffingtonpost.com/entry/...e531062976?746
    Last edited by vapacersfan; 09-09-2017 at 02:42 PM.

  8. #7
    Member
    Join Date
    Apr 2006
    Location
    Colombia
    Age
    32
    Posts
    6,344

    Sports Logo Sports Logo Sports Logo

    Default Re: Equifax Data Breach

    www.yahoo.com/finance/news/psa-no-matter-equifax-may-010153057.html

    "Those hoping to find out if their Social Security number and other identifying info was stolen, along with a potential 143 million other American's data won't find answers from Equifax.
    In what is an unconscionable move by the credit report company, the checkersite, hosted by Equifax product TrustID, seems to be telling people at random they may have been affected by the data breach."

    So, this guy entered random names and last 6 digits of ssns and got the same (nonspecific) 'you may have been affected' message, along with the enrollment offer.




  9. #8
    Member Sparhawk's Avatar
    Join Date
    Nov 2009
    Location
    Atlanta, GA
    Age
    37
    Posts
    6,284

    Sports Logo

    Default Re: Equifax Data Breach

    Yeah, and you waive your right to sue Equifax (class action) if you use their link to check if you've been impacted by the break or not. I didn't find out until after I did it. Said I wasn't impacted, so that's nice. Still, I'll be monitoring my credit.
    First time in a long time, I've been happy with the team that was constructed, and now they struggle. I blame the coach.

  10. #9
    TRADE MONTA Sandman21's Avatar
    Join Date
    Jul 2007
    Location
    Area55 - Now, Then, Forever
    Posts
    7,862

    Sports Logo Sports Logo Sports Logo

    Default Re: Equifax Data Breach

    Indiana residents are entitled to requesting free credit freezes per state law:
    https://www.in.gov/attorneygeneral/2411.htm

    I'd personally do that instead of signing up for Equifax's credit monitoring so you can join the Class Action lawsuit, because these guys are gonna be toast.
    "Nobody wants to play against Tyler Hansbrough NO BODY!" ~ Frank Vogel

    "And David put his hand in the bag and took out a stone and slung it. And it struck the Philistine on the head and he fell to the ground. Amen. "

  11. #10
    Member
    Join Date
    Apr 2006
    Location
    Colombia
    Age
    32
    Posts
    6,344

    Sports Logo Sports Logo Sports Logo

    Default Re: Equifax Data Breach

    https://www.equifaxsecurity2017.com/

    ATLANTA — As part of the company’s ongoing review of the cybersecurity incident announced September 7, 2017, Equifax Inc. (NYSE: EFX) today made personnel changes and released additional information regarding its preliminary findings about the incident.
    The company announced that the Chief Information Officer and Chief Security Officer are retiring. Mark Rohrwasser has been appointed interim Chief Information Officer. Mr. Rohrwasser joined Equifax in 2016 and has led Equifax’s International IT operations since that time. Russ Ayres has been appointed interim Chief Security Officer. Mr. Ayres most recently served as a Vice President in the IT organization at Equifax. He will report directly to the Chief Information Officer. The personnel changes are effective immediately.
    Equifax’s internal investigation of this incident is still ongoing and the company continues to work closely with the FBI in its investigation.
    Specific Details of Incident

    • On July 29, 2017, Equifax’s Security team observed suspicious network traffic associated with its U.S. online dispute portal web application. In response, the Security team investigated and blocked the suspicious traffic that was identified.
    • The Security team continued to monitor network traffic and observed additional suspicious activity on July 30, 2017. In response, the company took offline the affected web application that day.
    • The company’s internal review of the incident continued. Upon discovering a vulnerability in the Apache Struts web application framework as the initial attack vector, Equifax patched the affected web application before bringing it back online.
    • On August 2, 2017, Equifax contacted a leading, independent cybersecurity firm, Mandiant, to assist in conducting a privileged, comprehensive forensic review to determine the scope of the intrusion, including the specific data impacted.
    • Over several weeks, Mandiant analyzed available forensic data to identify unauthorized activity on the network.
    • The incident potentially impacts personal information relating to 143 million U.S. consumers – primarily names, Social Security numbers, birth dates, addresses and, in some instances, driver’s license numbers.
      • In addition, credit card numbers for approximately 209,000 U.S. consumers, and certain dispute documents with personal identifying information for approximately 182,000 U.S. consumers, were accessed.
      • Equifax also identified unauthorized access to limited personal information for certain U.K. and Canadian residents and is working with regulators in those countries.

    • With respect to the company’s security posture, Equifax has taken short-term remediation steps, and Equifax continues to implement and accelerate long-term security improvements.----





    Overview of Consumer Support Response and Recent Developments

    The company is fully committed to proactively supporting consumers who may have been impacted by the cybersecurity incident. A timeline of our response includes:

    • The company worked diligently with Mandiant to determine what information was accessed and identify the potentially impacted consumers in order to make an appropriate public disclosure of the incident.
    • As soon as the company understood the potentially impacted population, a comprehensive support package was rolled out to consumers on September 7, 2017.
    • Equifax took the following steps:
      • Created a dedicated website where consumers could understand whether they were impacted, find out more information about the incident and learn how to protect themselves.
      • The company offered free credit file monitoring and identity theft protection to all U.S. consumers, regardless of whether they were definitively impacted.
        • TrustedID Premier includes 3-Bureau credit monitoring of Equifax, Experian, and TransUnion credit reports; copies of Equifax credit reports; the ability to lock and unlock Equifax credit reports; identity theft insurance; and Internet scanning for Social Security numbers.

      • The company has also set up a dedicated call center to assist consumers with questions and signing up for the free offering and has continued to ramp up the call center to reduce wait times.

    • Equifax also provided written notification to all U.S. State Attorneys General and contacted other federal regulators.
    • Since the announcement, Equifax has taken additional actions including:
      • Providing a more prominent and clear link from the main www.equifax.com website to the cybersecurity incident website www.equifaxsecurity2017.com, so that consumers can quickly and easily find the information they need.
      • Tripling the call center team and continuing to add agents, despite facing some difficulty due to Hurricane Irma.
      • Resolving issues with the impact look-up tool.
      • Addressing confusion concerning the arbitration and class-action waiver clauses included in the Terms of Use applicable to the product:
        • The company never intended for these clauses to apply to this cybersecurity incident.
        • Because of consumer concern, the company clarified that those clauses do not apply to this cybersecurity incident or to the complimentary TrustedID Premier offering.
        • The company clarified that the clauses will not apply to consumers who signed up before the language was removed.

      • Clarifying that no credit card information is required to sign up for the product and that consumers will not be automatically enrolled or charged after the conclusion of the complimentary year.
      • Making changes to address consumer concerns regarding security freezes:
        • The company clarified that consumers placing a security freeze will be provided a randomly generated PIN.
        • The company continues to work on technical difficulties related to the high volume of security freeze requests.
        • Consumers who paid for a security freeze starting at 5pm EST on September 7, 2017 will receive a refund.
        • The company agreed to waive fees for removing and placing security freezes through November 21, 2017.

    About Equifax


  12. #11
    Member Sparhawk's Avatar
    Join Date
    Nov 2009
    Location
    Atlanta, GA
    Age
    37
    Posts
    6,284

    Sports Logo

    Default Re: Equifax Data Breach

    Equifax has been directing consumers to a fake phishing site. WTF

    https://www.theverge.com/2017/9/20/1...ity-monitoring
    First time in a long time, I've been happy with the team that was constructed, and now they struggle. I blame the coach.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •