Equifax (44 million UK people's records) hacked.

[timmeh]

We've checked and my wife's details are likely to have been included in the leak but mine haven't.

They're offering a year's free subscription to their protection service (yep, I find that funny too) so we're getting enrolled to that just in case.

 

[Fishbait]

It's reddit, so pinch of sodium & all that, but...

They didn't even notify people using their monitoring service.

• 
  This is the big one, they blatantly came out and said that they weren’t going to notify people directly that have been impacted.
  

 

[darael]

We've checked and my wife's details are likely to have been included in the leak but mine haven't.

They're offering a year's free subscription to their protection service (yep, I find that funny too) so we're getting enrolled to that just in case.

Where is the leak so myself and others can check?

 

[LeMson]

We've checked and my wife's details are likely to have been included in the leak but mine haven't.

They're offering a year's free subscription to their protection service (yep, I find that funny too) so we're getting enrolled to that just in case.

How does one check timmeh?

 

[TallPaul1878]

I recently just had my EA Origin account hacked. Could it be related?

I had all my account details and passwords altered and had to contact an admin to reset everything

 

[Destination]

How does one check timmeh?

He is in the US.
Only US with their social security numbers can check currently.
They don't care thus far about the UK data they lost.

Clearly they feel the information commisioner here won't or doesn't have the power to spank them in any fashion.

Have they gave any indication of how much data on each person has been lost.
A credit record could be an absolute goldmine of information and activity if it was lost in its entirety.


Their rival, experia, are used by our government as part of the verification process for verify your ID for government gateway. They can do this as they know everything about you. Questions such as which of the following banks do you have a credit card with, or an account with, who is your eletricity supplier from an abcde choice.
I would be surprised if this company doesn't hold similar.

Have they stated what depth of info has been lost?

Did they really not warn people signed up to their monitor and protection program?

 

[stockhausen]

3 managers with shares of £1.3 Million know nothing for a month of a large security breach?

"I didn't know, nobody told me anything, there is no way the Federal Authorities can prove anything."

I suspect that Insider Trading is an offence in America as it is in the UK - although difficult to prove and perhaps generally tolerated.

Clearly they feel the information commisioner here won't or doesn't have the power to spank them in any fashion.

A perfectly reasonable assumption based on past performance by the alleged Guardians of our Data.

 

[CREATIVE!11]

Scummy company, scummy ceo's

What's new?

 

[timmeh]

How does one check timmeh?

Where is the leak so myself and others can check?

https://www.equifaxsecurity2017.com/potential-impact/

That's where I checked but as someone else said, it looks like it's US only. Can you enroll to their service from the UK on that link?

 

[Destination]

Nope

 

[LeMson]

Want's last 6 digits of social security number, don't have one so nope ;(

 

[Destination]

US only, as stated for the UK data they have they have as yet not bothered to care.

 

[darael]

As noted in yesterday’s breaking story on this breach, the Web site that Equifax advertised as the place where concerned Americans could go to find out whether they were impacted by this breach — equifaxsecurity2017.com — is completely broken at best, and little more than a stalling tactic or sham at worst.

In the early hours after the breach announcement, the site was being flagged by various browsers as a phishing threat. In some cases, people visiting the site were told they were not affected, only to find they received a different answer when they checked the site with the same information on their mobile phones.

https://krebsonsecurity.com/2017/09/equifax-breach-response-turns-dumpster-fire/

 

[Fishbait]

It took almost no time for them to discover that an online portal designed to let Equifax employees in Argentina manage credit report disputes from consumers in that country was wide open, protected by perhaps the most easy-to-guess password combination ever: “admin/admin.”

https://krebsonsecurity.com/2017/09/ayuda-help-equifax-has-my-data/


Sheesh!

 

[stockhausen]

Bloomberg moved a story yesterday indicating that three top executives at Equifax sold millions of dollars worth of stock during the time between when the company says it discovered the breach and when it notified the public and investors.

The executives reportedly told Bloomberg they didn’t know about the breach when they sold their shares.

In the famous words of Ms Mandy Rice-Davies - "Well they would, wouldn't they?"

 

[stockhausen]

The UK arm of Equifax said files containing information on "fewer than 400,000" UK consumers was accessed in the breach.

Meanwhile the Equifax CIO and Head of Security will retire, effective immediately. I wonder whether these people happen, quite coincidentally, to have sold their shares?

 

[dowie]

Well I guess at least they probably hit some diversity quotas...

 

[Destination]

Nice credentials.
Good to manage something you have absolutely no background in.
Bit like government ministers

 

[Diddums]

Lol.

https://www.bloomberg.com/news/arti...suffer-a-hack-earlier-than-the-date-disclosed

Honestly it's so predictable it's almost unbelievable. Unfortunately just like every other massive breach of our privacy they'll get a slap on the wrist and another fat cat job.

Lying, thieving *****, the lot of them.

 

[Destination]

Didn't realise one of the chaps selling stock was the CFO. He clearly wouldn't have any idea of a hack which would impact company share price, or that his company had engaged a security company as early as Mrach for a previous hack.