Equifax Data Breach Exposes Personal Information of 143 Million

Discussion in '[H]ard|OCP Front Page News' started by Kyle_Bennett, Sep 7, 2017.

  1. Kyle_Bennett

    Kyle_Bennett El Chingón Staff Member

    Messages:
    47,717
    Joined:
    May 18, 1997
    Another day, another huge data breach. This time Equifax, which is a company that has data on damn near every person in North America. Enjoy! Thanks cageymaru.


    Equifax (EFX) said Thursday that hackers have gained access to personal information belonging to 143 million U.S. consumers after exploiting a vulnerability on the credit bureau's website.

    The hack occurred between mid-May and July, according to Equifax, one of the nation's biggest credit reporting agencies. The leaked information includes names, Social Security numbers, birth dates and in some cases driver's license numbers.


    UPDATE: It seems as though three Euqifax managers sold stock before the hack was revealed. Hmmm.
     
    Last edited: Sep 7, 2017
  2. scojer

    scojer 2[H]4U

    Messages:
    2,821
    Joined:
    Jun 13, 2009
    Well shit. So is this only consumers who had their credit ran during the timeframe? Or is it everyone the hackers were able to get during the time period? The article didn't say. If the former then I'm good. If the latter then, as I said, well shit.
     
  3. thesmokingman

    thesmokingman [H]ardness Supreme

    Messages:
    4,205
    Joined:
    Nov 22, 2008
    Now we're all screwed.
     
  4. Miah

    Miah n00bie

    Messages:
    31
    Joined:
    Nov 21, 2013
    So are they going to offer a year of free credit monitoring to all affected customers via TransUnion or Experian? :)
     
  5. TwistedAegis

    TwistedAegis [H]ardForum Junkie

    Messages:
    8,804
    Joined:
    Oct 7, 2009
    Honestly this is just meh at this point. It's all out there anyway, perhaps this just allows more updated addresses.

    Now if it actually breached the whole credit report, we'd all be screwed. But from their claim at least it's just PII data, and credit card numbers and dispute information for about 200k people.

    I mean, still screw them for allowing this but...when a full ID and corresponding information costs less than $1, it means there's so much supply for this already another 100M means nothing. A sad state of affairs.
     
    Vercinaigh, Madoc, zkostik and 2 others like this.
  6. RogueTadhg

    RogueTadhg Gawd

    Messages:
    997
    Joined:
    Dec 14, 2011
    That's okay. My credit's already trash.

    I mean... they can only make it look better.

    Maybe they'll try at a really ritzy hotel and make it look like I walk in a suit and tie and do theiving. Not the "Now you see this" type of thiefs. But the "Oceans 11" movie type. You know how there's all the awesome shit that happens and everything? That type. They ruin my credit being Jame's Bond and Brad Pitt had sex with a Bugatti Veyron. Not at the same time. No homo. Then the credit beau will be all like, "Damn. This gent's got the cash flow. Time we bumped up his credit from 300 to 800. Man's got the threads."Then everyone feels sorry about the depth of despair and send me money to feed my burning Video Card and CPU addiction that I've developed thanks to Kyle's awesome [H] videos about Delidding processors with strange objects.

    Thanks Kyle.
     
    Last edited: Sep 7, 2017
    Vercinaigh, fadedlogic, Madoc and 6 others like this.
  7. Pusher of Buttons

    Pusher of Buttons Argues with Teddy Ruxpin

    Messages:
    3,884
    Joined:
    Dec 6, 2016
    Yep, not much more they can really screw me more than I can screw myself.
     
    Kil4Thril and RogueTadhg like this.
  8. Bandalo

    Bandalo [H]ardness Supreme

    Messages:
    4,246
    Joined:
    Dec 15, 2010
    Eh, they got all my data in the OPM hack already anyway.
     
    Wizard220, djoye, Jester1550 and 3 others like this.
  9. J3RK

    J3RK [H]ardness Supreme

    Messages:
    7,202
    Joined:
    Jun 25, 2004
    Where are the hackers that go in and undetectably boost everyone's scores by 50 points or so? :D
     
  10. Kyle_Bennett

    Kyle_Bennett El Chingón Staff Member

    Messages:
    47,717
    Joined:
    May 18, 1997
  11. doz

    doz [H]ardness Supreme

    Messages:
    5,168
    Joined:
    Jun 16, 2009
    Well that's not good. I see these guys going to jail in the years to come. Feds do not take kindly to this shit.
     
    Wizard220, Oddity, F.E.A.R. and 9 others like this.
  12. yourgrandma

    yourgrandma [H]ard|Gawd

    Messages:
    1,310
    Joined:
    Apr 15, 2011
    How kind of them to delay reporting the breach in order to dump their stock first
     
    Madoc, mynamehere, Jim Kim and 3 others like this.
  13. erek

    erek [H]ard|Gawd

    Messages:
    1,077
    Joined:
    Dec 19, 2005
    Good catch. Apparently my free Equifax TrustedID Premiere enrollment date is 9/13. Anyone else?
     
    zerogg likes this.
  14. Pusher of Buttons

    Pusher of Buttons Argues with Teddy Ruxpin

    Messages:
    3,884
    Joined:
    Dec 6, 2016
    You mean being "sternly reprimanded" and doing 6 months on Club Fed and getting a $50 million golden parachute?
     
    Xaeos, tetris42, Wrecked Em and 2 others like this.
  15. aliaskary77

    aliaskary77 Limp Gawd

    Messages:
    221
    Joined:
    Dec 18, 2006
    if they give you a date, does it mean it was affected? I got 9/11.
     
  16. doz

    doz [H]ardness Supreme

    Messages:
    5,168
    Joined:
    Jun 16, 2009
    These guys are too low level. While they are "executives", they are not Club Fed status I don't think.
     
  17. tunatime

    tunatime 2[H]4U

    Messages:
    2,904
    Joined:
    Sep 15, 2011
    we need to do away with ss numbers as everyone ss numbers, names ect are allrady out there at this point.
     
  18. Phixzet

    Phixzet [H]Lite

    Messages:
    89
    Joined:
    Nov 9, 2005
    I'm more livid than you can imagine. Not at the hack.

    That these POS credit bureau's are allowed to keep massive amounts of sensitive data on us, and then CHARGE us to exert any control?

    I was impacted.

    Today, moments after this hit the news... I got an email from Credit Karma noting an attempt to change my password (did not succeed, I have to click in the email for next steps). 10 minutes later while going to a wake, I get an email from a credit card company noting that my email address has just been changed.

    I spend like 20+ mins dealing with that with the CC company, but then visit the Equifax website setup to address this issue. It tells me my enrollment date is 9/11, four days away - that's when I am allowed to enroll. (TBH, I already have a fraud alert on my reports from an event 4 years ago, but figured considering the severity of this, and that minutes after it went public I already had two attempts of fraud, one of them successful...)

    Anyway, only Equifax let me put in a security freeze (to not share my file with anyone)... Here's where I become super livid. An hour later after realizing the other bureaus won't let me do it online and I have to mail them, I try to remove the Equifax freeze.

    They want $5 for this.

    So I can't enroll in their protection plan, even though I already have fraud occuring... And their standard freeze process wants money from me.

    They make billions selling information our credit history, separately market products to us consumers... But if we want to exert any control over that, they come looking for a payment method.

    It's not the money that bothers me - it's the principle. (Since I'm now twice a victim (a small charge went through on that one CC)... I'll get it removed later for free, after I send them proof to extend my current fraud alert out 7 years from the 3 remaining)

    Sorry for the rant. :)
     
  19. Tiberian

    Tiberian DILLIGAFuck

    Messages:
    4,739
    Joined:
    Feb 12, 2012
    Almost 4 months till this was reported, and now the "complimentary" offer for some "credit protection" bullshit. Somehow this just doesn't seem legit to me, I mean I get they're making this offer because they think it's a good thing but, whenever these events happen and then there's some offer immediately afterwards it just rings like a bait & switch to me, that's my gut feeling here.
     
    zerogg and Q-BZ like this.
  20. Methadras

    Methadras [H]ardness Supreme

    Messages:
    6,088
    Joined:
    Dec 19, 2000
    I'll say it now like I've said in the past. This is a massive lawsuit offense and Equifax should be sued into oblivion for their negligence and malfeasance. They need to be taught a lesson and as the keepers of my personal data and credit information, they were or are obligated to keep it safe and not expose me to criminality. They need to pay. So I'm going to talk to my attorney and see what recourse I have available to me and pursue it. That's the bottom line. Enough is enough.
     
  21. Kdawg

    Kdawg Limp Gawd

    Messages:
    297
    Joined:
    Aug 12, 2017
    once the free identity theft protection ends, I'm going to have a shit ton of unauthorized credit card accounts opened under my name. Just watch
     
    86 5.0L likes this.
  22. gigaxtreme1

    gigaxtreme1 2[H]4U

    Messages:
    2,978
    Joined:
    Oct 1, 2002
    The whole credit monitoring thing is a huge scam anyway. This could blow up big time. Time for more regulation.
     
  23. dvsman

    dvsman [H]ard|Gawd

    Messages:
    1,306
    Joined:
    Dec 2, 2009
    I love how they say "complimentary" when they actually mean "compensatory" - plus this crap is exactly like the war(s) in the Middle East. Let's just announce a deadline for when we're gonna pull out, so the bad guys can just wait us out. Let see Free Credit Protection for one year ... okay so a year and a day later, boom!
     
    mynamehere, chockomonkey and tunatime like this.
  24. Galvin

    Galvin 2[H]4U

    Messages:
    2,116
    Joined:
    Jan 22, 2002
    These companies need to start encrypting all data, that way when a breach happens, the data is useless. Unless they break into the company its self for the key.
     
    Compddd and tunatime like this.
  25. Semantics

    Semantics 2[H]4U

    Messages:
    3,096
    Joined:
    May 18, 2010
    Good i hope these scum all burn down
     
  26. tetris42

    tetris42 2[H]4U

    Messages:
    3,180
    Joined:
    Apr 29, 2014
  27. Q-BZ

    Q-BZ Pick your own.....you deserve it.

    Messages:
    16,709
    Joined:
    Sep 28, 2007
    Unfortunately there's been a few times over the last several years or so where I went through this company to do the free 90 days credit watch.

    I'm concerned.
     
  28. gigaxtreme1

    gigaxtreme1 2[H]4U

    Messages:
    2,978
    Joined:
    Oct 1, 2002
    I have been wondering about these robocalls i've been getting lately. Since they share data everyone is at risk.
     
  29. oblox

    oblox Gawd

    Messages:
    531
    Joined:
    Nov 27, 2013
    So basically every citizen w/ credit in the US. Good job.
     
  30. drklu

    drklu [H]ard|Gawd

    Messages:
    1,817
    Joined:
    Jul 15, 2013
    Strange timing because I just got some weird spam today I haven't seen before
     
    tunatime likes this.
  31. gigaxtreme1

    gigaxtreme1 2[H]4U

    Messages:
    2,978
    Joined:
    Oct 1, 2002
    Someone replied to a spam email I got on my account and had to change my password. Weird stuff.
     
  32. lostin3d

    lostin3d Limp Gawd

    Messages:
    383
    Joined:
    Oct 13, 2016
    People use to say, folllow the money trail. Well . . .
     
  33. DigitalGriffin

    DigitalGriffin 2[H]4U

    Messages:
    3,462
    Joined:
    Oct 14, 2004
    Well just accessed annualcreditreport.com

    I seem to be in the clear.

    For those who worry, this site was mandated by the government so consumers could see potentially damaging fraudulent accounts or bad information.

    It's free to use once a year. It includes reports from Experion, TransUnion, and Equifax.
     
    Madoc and Q-BZ like this.
  34. DigitalGriffin

    DigitalGriffin 2[H]4U

    Messages:
    3,462
    Joined:
    Oct 14, 2004
    Someone else said what I was thinking. It's time we unlinked social security numbers from credit.

    The I'd plan I see is you entering your 9 digit SOC sec. Then a 4 digit pin which is illegal to store and sent to a govt clearing computer to verify it's you. Your records are then hashed based on the companies private key and your social.
     
  35. Spidey329

    Spidey329 [H]ardForum Junkie

    Messages:
    8,225
    Joined:
    Dec 15, 2003
    This would explain the weird stuff recently. My dad kept getting a password change request on his email and I got a call from Chase confirming I made certain charges.

    These companies won't take data security seriously until one of them is hit with a fine so severe they're all but bankrupt.

    Just checked, my enrollment data is 9/12, so that means I'm one part of it. Joy.
     
  36. dkarn45

    dkarn45 n00bie

    Messages:
    3
    Joined:
    Feb 3, 2016
    hope this lowers their credit score the bastards
     
    Madoc and tenjuna like this.
  37. brentsg

    brentsg [H]ard|Gawd

    Messages:
    1,217
    Joined:
    Mar 8, 2003
    OpenDNS security triggering phishing on the site they setup to see if you're compromised.
     
  38. RogueTadhg

    RogueTadhg Gawd

    Messages:
    997
    Joined:
    Dec 14, 2011
    The problem may not be immediate. I know from previous security breaches... it could take a while before you get an alert of some kind. It can be really damaging to do a lot in life.

    Go here: https://www.equifaxsecurity2017.com/potential-impact/

    This is a lot larger than normal credit breaches a.k.a. Yahoo or even Sony. This really does have the potential to screw over your plans for life.
     
  39. DigitalGriffin

    DigitalGriffin 2[H]4U

    Messages:
    3,462
    Joined:
    Oct 14, 2004
    Yeah I went there and looks like I'm signed up.

    Luckily I have 1 account and it's my mortgage. So it will be hard for them to manipulate any others.

    Equifax will be sued into the ground for this. One year credit monitoring won't cut it.

    But that Equifax security website is f'ing worthless. I entered the information and all it said was I was enrolled. Not if I was impacted. I also had to copy the link and check again in a few days for products they are offering.

    This is one class action I would be happy to hop on.
     
    Last edited: Sep 8, 2017
    Patton187, boushidosan, J3RK and 3 others like this.