Linked by Thom Holwerda on Thu 7th Sep 2017 23:45 UTC
Legal

Equifax Inc. today announced a cybersecurity incident potentially impacting approximately 143 million U.S. consumers. Criminals exploited a U.S. website application vulnerability to gain access to certain files. Based on the company's investigation, the unauthorized access occurred from mid-May through July 2017. The company has found no evidence of unauthorized activity on Equifax's core consumer or commercial credit reporting databases.

Names, social security numbers, birthdays, addresses, driver's license numbers, credit card numbers - this is a very big breach.

Interestingly enough, three executives of the credit reporting agency sold their shares in the company days after the breach was discovered.

Thread beginning with comment 648741
To view parent comment, click here.
To read all comments associated with this story, please click here.
RE: Comment by Boogaloo
by Alfman on Sun 10th Sep 2017 21:44 UTC in reply to "Comment by Boogaloo"
Alfman
Member since:
2011-01-28

Boogaloo,

I am actually happy to hear about such things. People need a hard hit on the head to wake up and smell the reality. A system where single "secret" number is enough to impersonate a person is retarded. A company that pays little to no attention to IT and data security deserves to crash and burn. People who put up with both these things deserve a painful lesson.


I agree with your general assessment, but you are very wrong on the last point. You can blame the victims however much you want, but when it is companies that you have no relationship with that are ruining your credit and sending your interest payments skyrocketing, then what do you really expect people can do?

Their options:
1. Spend time and money going to court.
2. Wait in vein for congress to act (we're in a deregulatory political climate, so good luck with that).
3. Go to each of the three major credit bureaus who are selling your data and pay their fee so they stop selling your data.

https://www.transunion.com/credit-freeze/place-credit-freeze

This is probably the easiest option, but they still technically collect your data and it can still get leaked, they just stop selling it out.

You could argue it's your data and they have no ethical right to sell it in the first place. But they don't give a crap if you're right or wrong because they're making boatloads of money and congress has done nothing to stop them. Until their activities are banned by law, they'll continue to do it regardless of what we think.

Always keep in mind when it comes to companies selling personal credit data, you are the product and not the customer. It makes the whole notion of boycotting them completely mute unless you have a way to persuade companies to stop buying credit data. If you think there's a good way to do that, then please share because many of us would like to see changes.

Edited 2017-09-10 21:46 UTC

Reply Parent Score: 2

RE[2]: Comment by Boogaloo
by darknexus on Mon 11th Sep 2017 13:01 in reply to "RE: Comment by Boogaloo"
darknexus Member since:
2008-07-15

You could argue it's your data and they have no ethical right to sell it in the first place. But they don't give a crap if you're right or wrong because they're making boatloads of money and congress has done nothing to stop them. Until their activities are banned by law, they'll continue to do it regardless of what we think.


And even if it were to be made illegal, they'd still do it on the sly, and with the government's covert blessing and approval. That's what you get when corruption is everywhere and encouraged.

Reply Parent Score: 2

RE[3]: Comment by Boogaloo
by Alfman on Mon 11th Sep 2017 14:56 in reply to "RE[2]: Comment by Boogaloo"
Alfman Member since:
2011-01-28

darknexus,

And even if it were to be made illegal, they'd still do it on the sly, and with the government's covert blessing and approval. That's what you get when corruption is everywhere and encouraged.


Yea, first the laws have to get passed. Quid pro quo dynamics between government and business make this unlikely.

Secondly, the laws have to be enforced. Without enforcement, laws don't help. Do not call legislation is an example of laws that were supposed to help, but many companies ended up taking advantage of the fact that violating the laws can still be low risk and profitable. ;)

Reply Parent Score: 2