Equifax has re-opened a Web site that lets anyone look up the salary history of a large portion of the American workforce using little more than a person’s Social Security number and their date of birth. The big-three credit bureau took the site down just hours after I wrote about it on Oct. 8, and began restoring the site eight days later saying it had added unspecified “security enhancements.”
At issue is a service provided by Equifax’s TALX division called The Work Number. The service is designed to provide automated employment and income verification for […] Read more
The former CEOs for Yahoo and Equifax have been invited to testify at a Senate committee hearing on massive data breaches.
[…] Read more
(Photo / Thinkstock)
A trade group representing Pennsylvania credit unions has joined a class-action lawsuit against Equifax, saying financial institutions will incur years of fraud-related expenses because of the recent data breach at the company.
The Pennsylvania Credit Union Association is one of eight state and regional trade groups to join the suit since the Credit Union National Association filed it Oct. 4.
The complaint alleges that credit unions will be on the hook for costs like canceling and reissuing compromised credit cards, reimbursing members for fraudulent charges, increasing fraudulent activity monitoring and notifying members of fraud on their […] Read more
Managing software vulnerabilities is a universal problem.
While unknown flaws in code or system design are part of the vulnerability management process, responsible disclosure policies and bug bounties have greatly reduced the prevalence of zero-day attacks. Unknown security holes that attackers exploit are usually at high-value targets, such as Fortune 500 companies, government agencies and critical infrastructures.
NotPetya, WannaCry, Conficker and other well-publicized attacks took advantage of vulnerabilities that were publicly known and had available software patches. The use of known vulnerabilities is especially troubling for security professionals because these attacks can be prevented.
Companies haven’t embraced the ever-changing software environments that have […] Read more
At least eight credit union leagues from all over the country are now plaintiffs in CUNA’s recent lawsuit against Equifax over the credit bureau’s huge data breach that exposed personal financial information for millions of people.
The Pennsylvania Credit Union Association, Mountain West Credit Union Association and the Nebraska Credit Union League are among the latest to join the growing class-action suit over Equifax’s enormous data breach announced September 7.
The three leagues had harsh words about Equifax in their announcements.
“We have not seen a data breach of this magnitude before and the potential […] Read more
Almost 700,000 British victims of the Equifax hack are receiving letters offering a free fraud protection service. But you’ll need to hand over personal details to get it – and many say the helpline the letter directs you to isn’t working properly.
The credit report heavyweight is writing to UK consumers to warn them their personal details have been compromised, after it announced in September its US parent company had been the victim of a cyberattack five months […] Read more
House Committee Plans Hearings in Response to Equifax BreachU.S. News & World ReportThe state House Committee on Commerce and Economic Development says it will hold four hearings this month around the state. The Times Argus reports the hearings are directly connected to the data breach reported by the credit reporting agency Equifax, …Punctual as ever, Equifax starts snail-mailing affected Brits about mega-breachDeathRattleSports.comEquifax data breach: The impact and lessons learnedKhaleej Times
all 4 news articles »
[…] Read more
Baby, it’s cold outside.
With Equifax and other companies reporting massive data breaches this year, more consumers are putting a freeze on their credit reports. And while a credit freeze won’t affect a borrower’s ability to qualify for a mortgage, it does require the borrower to take additional steps during the application process.
[…] Read more