09-14-2017, 07:56 PM
|
#1
|
|
Senior Member
|
|
Join Date: Aug 2016
Location: CA
Posts: 3,529
|
|
Senior Member
Join Date: Aug 2016
Location: CA
Posts: 3,529
|
Equifax Data Breach
So ive been following this really close... plus as someone who has IT background... really worried about what this might mean for our future regarding cyber security.
In comparison to what happened to Target... this is unprecedented. This isn't just names and Credit Card info... its SSN, DOB, Address and information that can be used to open, change, or validate existing accounts you already have.
I have...
Called important and critical accounts to add additional security measure... investment, brokerage, health... to add things like a PIN number for additional layer of security.
With the SSN and DOB alone, someone can use that information to social engineer existing companies... the PIN is your last line of defense (if applicable). Remember, without this, it is the SSN and DOB that is used to verify identity. Your social security number is now your Social Liability Number.
I have signed up for advanced credit monitoring though Experian... this includes insurance coverage for identity theft.
Equifax does offer this for free, and I have tried to sign up and double down on protection, but I have yet to receive a confirmation from them.
To be honest I don't really trust the company that got breached to provide that monitoring so I signed up though someone else too... Their CEOs are too busy selling stocks to report the breach... might want to read up on that too. Sounds like insider trading to me.
I have also issued a Fraud Alert for a 90 day rolling subscription.
https://www.experian.com/fraud/center.html
You can go further and freeze your accounts but you need to understand the Pros/Cons for that as well.
Freezing your credit, must do all three, if you do them in this order you can use the same PIN # for all three, use the one assigned by Equifax.
https://www.freeze.equifax.com/Freez...onalIDInfo.jsp (Free)
https://www.experian.com/ncaconline/freeze ($10.00 Fee)
https://freeze.transunion.com/ ($10.00 Fee)
I feel like I need to take it seriously... it may not be now, but someone out there has this information... It could be years, but if you are impacted, your life will change because identity theft is a PITA to undo, and expensive... both time and money.
https://www.fool.com/credit-cards/20...how-to-pr.aspx
https://www.equifaxsecurity2017.com/
and click on "potential impact"
What to do......
https://www.consumer.ftc.gov/blog/20...breach-what-do
AND... I started this thread so others can share ideas or things they have done to protect themselves... Even after doing all that, you still cant help but feel a bit helpless. We are really at the mercy of the hackers who now own this information. Its going to be a lifetime of watching over our backs unless sometimes makes some big changes at a government level.
Last edited by Bumbo; 09-14-2017 at 10:45 PM.
|
|
|
09-14-2017, 08:12 PM
|
#2
|
|
Member
|
|
Join Date: Feb 2017
Location: Sun City, CA
Posts: 91
|
|
Member
Join Date: Feb 2017
Location: Sun City, CA
Posts: 91
|
^^^agreed
Sent from my SM-G920P using Tapatalk
|
|
|
09-14-2017, 08:18 PM
|
#3
|
|
Member
|
|
Join Date: Mar 2010
Location: TX
Posts: 528
|
|
Member
Join Date: Mar 2010
Location: TX
Posts: 528
|
I'm a LifeLock member...it helps me sleep at night.
__________________
2002 SR5 4x4- Resurrection in Process
Quote:
Originally Posted by t4r4life
i like how my nipples are all smooth and pointy all six of them, sometimes i rub them when they get dirty
|
|
|
|
09-14-2017, 08:26 PM
|
#4
|
|
Senior Member
|
|
Join Date: Aug 2016
Location: CA
Posts: 3,529
|
|
Senior Member
Join Date: Aug 2016
Location: CA
Posts: 3,529
|
Quote:
Originally Posted by Mauzer
I'm a LifeLock member...it helps me sleep at night.
|
I looked at LifeLock but I went with Experian though AAA.
I compared the two... LifeLock cost $360/year for similar coverage, though AAA it cost around $90/year. Both include $1,000,000 in identity theft insurance at that price.
Last edited by Bumbo; 09-14-2017 at 10:48 PM.
|
|
|
09-14-2017, 08:49 PM
|
#5
|
|
Elite Member
|
|
Join Date: Mar 2010
Location: Illinois
Posts: 6,053
Real Name: Um, Phil?
|
|
Elite Member
Join Date: Mar 2010
Location: Illinois
Posts: 6,053
Real Name: Um, Phil?
|
Nice writeup...
__________________
2010 Blizzard Pearl SR5/P - traded
2018 Superwhite SR5/P ... IS350 retrofit.
|
|
|
09-14-2017, 08:56 PM
|
#6
|
|
Elite Member
|
|
Join Date: Feb 2011
Location: Bend, OR
Posts: 9,906
|
|
Elite Member
Join Date: Feb 2011
Location: Bend, OR
Posts: 9,906
|
It's honestly hard to keep track of all the security issues that crop up. I appreciate the post.
Unfortunately at this point it's beyond too late I think. There's security holes in just about everything and if someone wanted your information they'll have it, either by getting it from you or the government. Everything is digitized at this point, so there's no real amount of preventative steps you can take; it's all delaying actions and/or reactionary to your data being stolen.
Keep in mind that Intel recently "patched" a serious hole in their CPU code that could have allowed people to gain access to your PC through that issue. Ironically the Government was like, "Oh yeah, we patched that out of our system a while ago..." convenient they forgot to mention it to everyone else. It's not the only example of serious issues that have come up, additionally a lot of "hackers" have become smarter and more patient, they'll sit in a system for months or years once they've found an in waiting for a "big score" which can make finding them more difficult than someone who's actively trying to compromise your system.
But yeah, I'll have to start looking into Lifelock or a similar company at some point. At the very least if they screw-up I can take them to court. I'd be curious to see what suggestions/ideas come up for this.
Last edited by BlackWorksInc; 09-14-2017 at 08:59 PM.
|
|
|
09-14-2017, 11:02 PM
|
#7
|
|
Senior Member
|
|
Join Date: Aug 2016
Location: CA
Posts: 3,529
|
|
Senior Member
Join Date: Aug 2016
Location: CA
Posts: 3,529
|
Quote:
Originally Posted by BlackWorksInc
Unfortunately at this point it's beyond too late I think. There's security holes in just about everything and if someone wanted your information they'll have it, either by getting it from you or the government. Everything is digitized at this point, so there's no real amount of preventative steps you can take; it's all delaying actions and/or reactionary to your data being stolen.
|
I understand there has always been a risk... phishing sites, hacking, and most ends up at credit card fraud...
When you compare to other hacks like the Sony hack... username/password e-mail address... or even Target which was credit card numbers...
This wasn't low hanging fruit... this was the crown jewels of one of the three credit bureaus.
They are saying 143 million records... thats like 1/2 the population of the entire United States of American.
People are pretty outraged, and I find it to be embarrassing because it could have all been prevented. Apparently its was an exploit on a Linux web server that wasn't patched. (still reading about it)
To top that all off... get a load of all this.
3 Equifax Executives Sold Stock Days After Hack That Wasn't Disclosed For A Month : The Two-Way : NPR
Equifax execs sold stock before hack was disclosed - Sep. 8, 2017
I am also curious about... who did it, who has it, and what are they going to do with it.
Last edited by Bumbo; 09-14-2017 at 11:04 PM.
|
|
|
09-14-2017, 11:12 PM
|
#8
|
|
Senior Member
|
|
Join Date: Aug 2016
Location: CA
Posts: 3,529
|
|
Senior Member
Join Date: Aug 2016
Location: CA
Posts: 3,529
|
|
|
|
09-14-2017, 11:22 PM
|
#9
|
|
Elite Member
|
|
Join Date: Feb 2011
Location: Bend, OR
Posts: 9,906
|
|
Elite Member
Join Date: Feb 2011
Location: Bend, OR
Posts: 9,906
|
Quote:
Originally Posted by Bumbo
I understand there has always been a risk... phishing sites, hacking, and most ends up at credit card fraud...
When you compare to other hacks like the Sony hack... username/password e-mail address... or even Target which was credit card numbers...
This wasn't low hanging fruit... this was the crown jewels of one of the three credit bureaus.
They are saying 143 million records... thats like 1/2 the population of the entire United States of American.
People are pretty outraged, and I find it to be embarrassing because it could have all been prevented. Apparently its was an exploit on a Linux web server that wasn't patched. (still reading about it)
To top that all off... get a load of all this.
3 Equifax Executives Sold Stock Days After Hack That Wasn't Disclosed For A Month : The Two-Way : NPR
Equifax execs sold stock before hack was disclosed - Sep. 8, 2017
I am also curious about... who did it, who has it, and what are they going to do with it.
|
Oh don't get me wrong I'm not discounting you. I was making more of a comment that this "hack" is probably not at as rare as one might think. A lot of these higher-end targets have been infested for a long time, so I would not be surprised to find out that Equifax was not the only one hit in such a manner. It also doesn't surprise me they waffled on releasing that information, like I pointed out earlier the US government was well aware of the Intel Backdoor (they even fixed it on all their systems supposedly), yet they never bothered to mention anything about it and it could affect chips that have been in use for almost a decade. It wouldn't surprise me to find out this is more common place and a lot of these companies just aren't reporting like they should.
|
|
|
09-15-2017, 02:13 AM
|
#10
|
Junior Member
|
|
Join Date: Aug 2017
Location: Maryland
Posts: 21
|
|
Junior Member
Join Date: Aug 2017
Location: Maryland
Posts: 21
|
I feel just a bit lucky that I locked my credit down three years ago. But I still keep an eye on my credit reports each year.
|
|
|
09-15-2017, 03:02 AM
|
#11
|
|
Senior Member
|
|
Join Date: Nov 2008
Posts: 3,696
|
|
Senior Member
Join Date: Nov 2008
Posts: 3,696
|
Has anyone gone on their website to see if your information did get compromised? I haven't yet but I don't quite feel comfortable entering personal data to a place that just got hacked. Furthermore, how do we know that yes/no answer is even correct? Seems like asking the 8 ball to me.
@ Bumbo
, thanks for posting this thread. I need to take some steps to prevent my identity from getting stolen.
__________________
2014 Super White Trail Premium My build thread: http://www.toyota-4runner.org/5th-ge...ld-thread.html
2008 SR5 4X4 V6 Better late than never build thread: http://www.toyota-4runner.org/4th-ge...ld-thread.html
|
|
|
09-15-2017, 10:26 AM
|
#12
|
|
Elite Member
|
|
Join Date: Aug 2010
Location: Seattle, WA
Posts: 7,712
|
|
Elite Member
Join Date: Aug 2010
Location: Seattle, WA
Posts: 7,712
|
I'm just waiting for us to join the 21st century and remove the requirement of our SS# from all of this crap.
__________________
2001 4Runner 4WD Sport Package, Millennium silver, 110,000 miles, 2nd gen TRD Supercharger, Toytec BOSS coilovers, 890 OME rear springs, Bilstein 5125 rear shocks, custom Baldlands front bumper, PIAA 520 driving lights and fogs, 4x Innovation Sliders (welded on!), 18" Magnaflow muffler, JDM corners, 65" Thule bars, 20% tint, 16x8 FJ80 wheels on 265/75-16 Duratracs, Husky mats w/ cargo, rear diff breather mod, 3M clear bra, remote start, Pioneer AVIC-8200NEX
|
|
|
09-15-2017, 10:37 AM
|
#13
|
|
Member
|
|
Join Date: Jun 2016
Location: Missouri
Posts: 78
|
|
Member
Join Date: Jun 2016
Location: Missouri
Posts: 78
|
What I predict to happen is implanted RFID tags to verify identity. It's already starting in Sweden, and would lead the way to a cashless global economy.
Of course, the religious connotations are enormous......
__________________
2012 Camaro 2SS/RS LS3 (manual), 2007 Yamaha FJR, 2016 T4R LE
|
|
|
09-15-2017, 11:24 AM
|
#14
|
|
Senior Member
|
|
Join Date: Jul 2012
Location: Iowa
Posts: 3,146
|
|
Senior Member
Join Date: Jul 2012
Location: Iowa
Posts: 3,146
|
Quote:
Originally Posted by Hepar
I'm just waiting for us to join the 21st century and remove the requirement of our SS# from all of this crap.
|
I just laugh at this, because how Roosevelt pushed it through was on the statement that it would not be used as a form of identification......and here we are 80+ years later always referencing that number for identification.
__________________
-2013 T4R SR5-MYSALSA-KO2's
-(SOLD)2006 T4R SR5. Nautical Blue Metallic. 255/70/17 General AT2. LED Interior Swap. Toytec Ultimate 3inch lift/Icon 2.0s Rear, SHROCKWORKS Front Bumper, OEM FJ wheels, WM Roofrack, slowly working it up. My Build thread HERE
-(SOLD)2005 Subaru Impreza WRX STi. BMW Mica Blue paint job. Cobb stage 2 tuning. Other modifications.
|
|
|
09-15-2017, 11:52 AM
|
#15
|
|
Elite Member
|
|
Join Date: Nov 2002
Location: Eastern USA
Posts: 18,770
|
|
Elite Member
Join Date: Nov 2002
Location: Eastern USA
Posts: 18,770
|
Quote:
Originally Posted by Bumbo
I looked at LifeLock but I went with Experian though AAA.
I compared the two... LifeLock cost $360/year for similar coverage, though AAA it cost around $90/year. Both include $1,000,000 in identity theft insurance at that price.
|
Life lock here. And if you ***** about their cost, then they give you discount for life. Been a customer for 5 years or so.
Last edited by Thai; 09-15-2017 at 11:54 AM.
|
|
|
Thread Tools |
|
Display Modes |
Rate This Thread |
Linear Mode
|
|
Posting Rules
|
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
HTML code is On
|
|
|
|