Support NeoGAF

[Netherscourge]

https://www.equifaxsecurity2017.com/potential-impact/

Although I'm not sure if this site is any more secure.

Ain't no way in hell anyone should enter any part of their Soc# on that shit.

 

[Shake Appeal]

Ironically, this is the one credit bureau that still insists that I, a legal immigrant, don't exist and have no credit profile.

 

[BlackGoku03]

Wait... we HAVE to have info held with them and they won't keep their shit secure?

These companies don't normally give a fuck if your info was stolen.

 

[backflip10019]

Think of it this way. They can't possibly steal all of our identities.

 

[NarrowPath]

Trump's group of people responsible for cyber security all quit because they said he didn't take it seriously.

Hopefully the next president will push for all consumer data to be encrypted.

I read it was 8 people (out of 28)

 

[Steejee]

Fucking hell I hate the credit bureaus.

Trying to remember if it was Equifax or Experian that had my credit score 150 pts lower than the other two because of a 12 year old $42 debt...

 

[Future]

Its not like you have a choice for these fuckers to have your information... so what exactly are they going to do to protect half the US from this shit, issue a "we are sorry"?

Ain't gonna do shit cuz they got the country by the balls

 

[Fixed1979]

CNN is reporting that "residents in the U.K. and Canada were also impacted."

I don't see any support for those locations though...

EDIT:

Source: https://www.equifaxsecurity2017.com/

thanks

 

[backflip10019]

I used it, but it only gave me a message saying I could enroll in their TrustID thing on 9/12. So based on the instructions, I assume I'm safe, but really they probably don't know everyone that could possibly be affected anyway.

Apparently it doesn't even tell you if you were affected either way. It just signs you up for their monitoring service (which likely won't do anything either). Fucking Equifax.

 

[sqwarlock]

What's the best case scenario if your information was part of the breach?

Aside from freezing my credit, what can I possibly do? Just monitor things and if something happens go from there?

 

[TylerD]

CNN is reporting that "residents in the U.K. and Canada were also impacted."

I don't see any support for those locations though...

The information accessed primarily includes names, Social Security numbers, birth dates, addresses and, in some instances, driver's license numbers. In addition, credit card numbers for approximately 209,000 U.S. consumers, and certain dispute documents with personal identifying information for approximately 182,000 U.S. consumers, were accessed. As part of its investigation of this application vulnerability, Equifax also identified unauthorized access to limited personal information for certain UK and Canadian residents. Equifax will work with UK and Canadian regulators to determine appropriate next steps. The company has found no evidence that personal information of consumers in any other country has been impacted.

Source: https://www.equifaxsecurity2017.com/

 

[Leafhopper]

What's the best case scenario if your information was part of the breach?

Aside from freezing my credit, what can I possibly do? Just monitor things and if something happens go from there?

That's about all you can do.

 

[dallow_bg]

Apparently it doesn't even tell you if you were affected either way. It just signs you up for their monitoring service (which likely won't do anything either). Fucking Equifax.

It seems like it's supposed to.
Don't know what's up.

 

[SmackDaddy]

Oh cool, discover's site is down so i can't check my shit. L8r doods

 

[slit]

Even tho the attacks give me job security, this is awful. The credit monitoring shit is also a laughable consolation at this point. There are so many ways you can be affected before your credit reports anything.

 

[Netherscourge]

Good news!

Equifax's credit monitoring service works! They detected a breach and stolen credit data!*

-
-
-
-
-
-
-
-
-
-
-
*unfortunately, it was from Equifax's OWN DATABASES.

 

[nicanica]

HOW DO I PASSWORD RESET MY SOCIAL SECURITY NUMBER?!

 

[Meier]

I find it fucking shocking that they're asking people to input 6 digits of their social on the web page to check if you were affected. I have never heard of something asking for 6. That's a fucking shitload of them, why not just go the whole hog if you're giving up that much. I guess the hackers probably already have your data so why not just give up most of it again, right?

 

[BreezyLimbo]

Source: https://www.equifaxsecurity2017.com/

So is this site secure?

 

[slit]

So is this site secure?

No it's a phish attempt! Don't fall for it.

 

[SwiftDeath]

HOW DO I PASSWORD RESET MY SOCIAL SECURITY NUMBER?!

Witsec

Next level Credit Protection

 

[Fixed1979]

So is this site secure?

It's an official Equifax site, so no.

 

[GoldenEye 007]

So is this site secure?

It is linked from Experian's main site. But Experian...

Experians main site was down for me earlier, though.

 

[BreezyLimbo]

No it's a phish attempt! Don't fall for it.

It's an official Equifax site, so no.

It is linked from Experian's main site. But Experian...

Experians main site was down for me earlier, though.

Hm :l

 

[Netherscourge]

I'm amazed we don't have financial Armageddon right now.

I'm still scratching my head over Wells Fargo's millions of fake accounts illegally transferring balances for commission bonuses.

Now this shit.

What's next? PayPal getting hacked?

 

[GameAddict411]

The thing there is no way to have avoided this. If you have gotten any credit card, loan, or mortgage you are likely to be affected. I just hope that my credit monitoring will expose identity theft before a significant damage is done.

 

[whatsinaname]

Based on the company’s investigation, the unauthorized access occurred from mid-May through July 2017. The company has found no evidence of unauthorized activity on Equifax’s core consumer or commercial credit reporting databases.

That doesn't sound that bad....

The information accessed primarily includes names, Social Security numbers, birth dates, addresses and, in some instances, driver’s license numbers.

So what the fuck did that previous sentence mean?!

 

[Baka Sempai]

How is this not more closely monitored ?
I know EQUIFAX/EXPERIAN/TRANSUNION share the same API for developers and websites that monitor credit reports and what not (banks, loan offices, etc)
Why aren't they testing for possible breaches against their own infrastructure ?
Test for vulnerabilities on all their clients before any websites are launched ?

This is seriously a major fuck up in their part

 

[Netherscourge]

How is this not more closely monitored ?
I know EQUIFAX/EXPERIAN/TRANSUNION share the same API for developers and websites that monitor credit reports and what not (banks, loan offices, etc)
Why aren't they testing for possible breaches against their own infrastructure ?
Test for vulnerabilities on all their clients before any websites are launched ?

This is seriously a major fuck up in their part

It's either an inside job or some moron left a unlocked laptop laying around somewhere.

 

[DMONKUMA]

Major fucking screw up.

 

[slit]

How is this not more closely monitored ?
I know EQUIFAX/EXPERIAN/TRANSUNION share the same API for developers and websites that monitor credit reports and what not (banks, loan offices, etc)
Why aren't they testing for possible breaches against their own infrastructure ?
Test for vulnerabilities on all their clients before any websites are launched ?

This is seriously a major fuck up in their part

Because a lot of times companies don't want to pay for independent penetration testing until it's too late. In Experian's case there is really no excuse because of the type of data they hold.

 

[whatsinaname]

Source: https://www.equifaxsecurity2017.com/

Went to check possible impact and it is taking me to some other site?

https://trustedidpremier.com/eligibility/eligibility.html

Which has an Equifax logo on the top though. -_-

 

[FeenixRising]

Hm :l

It's legit, Equifax main site links to it via alert message

 

[Secret Character]

Went to check possible impact and it is taking me to some other site?

https://trustedidpremier.com/eligibility/eligibility.html

Which has an Equifax logo on the top though. -_-

Yes. If you're affected, you'll receive credit and identification monitoring for free.

 

[GoldenEye 007]

Went to check possible impact and it is taking me to some other site?

https://trustedidpremier.com/eligibility/eligibility.html

Which has an Equifax logo on the top though. -_-

Some people were saying it's not even telling you if you were affected but it's just directing people to sign up for credit monitoring......

Edit: Unless the direction is an indication you were affected. IDK

 

[Chaplain]

Some people were saying it's not even telling you if you were affected but it's just directing people to sign up for credit monitoring......

Edit: Unless the direction is an indication you were affected. IDK

It told me I wasn't affected, but my wife has to come back on the 12th. I assume she was hacked but I wasn't.

 

[whatsinaname]

Yes. If you're affected, you'll receive credit and identification monitoring for free.

Some people were saying it's not even telling you if you were affected but it's just directing people to sign up for credit monitoring......

Yeah, there seem to be two separate links. One for checking and one for enrollment.

I really don't want to enter my details on a dodgy url though.

 

[BreezyLimbo]

It's legit, Equifax main site links to it via alert message

thanks

 

[TylerD]

Because a lot of times companies don't want to pay for independent penetration testing until it's too late. In Experian's case there is really no excuse because of the type of data they hold.

We are constantly having penetration tests as a banking services / managed services provider both internal and external. We take this shit very seriously.

This is maddening.

 

[Natasha_c13]

Well, time to go back to hunting wooly mammoths and campfires ...

 

[GameAddict411]

It told me I wasn't affected, but my wife has to come back on the 12th. I assume she was hacked but I wasn't.

I guess I am affected. Fuck

 

[Zophar]

Well fuck, I have to resubmit student loan refinancing paperwork next month and I'm not sure if it's a good idea to freeze my accounts until that's done. Not sure what to do.

 

[benicillin]

So can I 2FA my identity?

 

[Surfinn]

Has something like this.. On such a large scale.. Ever happened?

 

[Wilsongt]

At this point, it is probably safe to assume every American's identity has been compromised with all of these hacks.

 

[NullPointer]

At this point, it is probably safe to assume every American's identity has been compromised with all of these hacks.

Multiple times over.

 

[direct_quote]

I guess I am affected. Fuck

Yah Probably me too, fml...

 

[whatsinaname]

These mealy mouthed pr spin assholes couldn't even display a message to say I was impacted. Just a "come back after this date to enroll".

 

[mollipen]

Three Equifax Managers Sold Stock Before Cyber Hack Was Revealed

Three Equifax Inc. senior executives sold shares worth almost $1.8 million in the days after the company discovered a security breach that may have compromised information on about 143 million U.S. consumers.

 

[dallow_bg]

Didn't tell me anything so I guess I'm affected. Great.

Yeah, there seem to be two separate links. One for checking and one for enrollment.



I really don't want to enter my details on a dodgy url though.

They both do the same thing.

Three Equifax Managers Sold Stock Before Cyber Hack Was Revealed

Wow.