Linked by Thom Holwerda on Thu 7th Sep 2017 23:45 UTC

Equifax Inc. today announced a cybersecurity incident potentially impacting approximately 143 million U.S. consumers. Criminals exploited a U.S. website application vulnerability to gain access to certain files. Based on the company's investigation, the unauthorized access occurred from mid-May through July 2017. The company has found no evidence of unauthorized activity on Equifax's core consumer or commercial credit reporting databases.

Names, social security numbers, birthdays, addresses, driver's license numbers, credit card numbers - this is a very big breach.

Interestingly enough, three executives of the credit reporting agency sold their shares in the company days after the breach was discovered.

Permalink for comment 648741
To read all comments associated with this story, please click here.
RE: Comment by Boogaloo
by Alfman on Sun 10th Sep 2017 21:44 UTC in reply to "Comment by Boogaloo"
Member since:


I am actually happy to hear about such things. People need a hard hit on the head to wake up and smell the reality. A system where single "secret" number is enough to impersonate a person is retarded. A company that pays little to no attention to IT and data security deserves to crash and burn. People who put up with both these things deserve a painful lesson.

I agree with your general assessment, but you are very wrong on the last point. You can blame the victims however much you want, but when it is companies that you have no relationship with that are ruining your credit and sending your interest payments skyrocketing, then what do you really expect people can do?

Their options:
1. Spend time and money going to court.
2. Wait in vein for congress to act (we're in a deregulatory political climate, so good luck with that).
3. Go to each of the three major credit bureaus who are selling your data and pay their fee so they stop selling your data.

This is probably the easiest option, but they still technically collect your data and it can still get leaked, they just stop selling it out.

You could argue it's your data and they have no ethical right to sell it in the first place. But they don't give a crap if you're right or wrong because they're making boatloads of money and congress has done nothing to stop them. Until their activities are banned by law, they'll continue to do it regardless of what we think.

Always keep in mind when it comes to companies selling personal credit data, you are the product and not the customer. It makes the whole notion of boycotting them completely mute unless you have a way to persuade companies to stop buying credit data. If you think there's a good way to do that, then please share because many of us would like to see changes.

Edited 2017-09-10 21:46 UTC

Reply Parent Score: 2