Expert: Equifax website raises security concerns

By  | 
View Map

NEW YORK (AP) -- A security expert says a website created by credit monitoring company Equifax to help its customers find out if their personal information was stolen after a massive data breach raises its own security questions.

Courtesy: MGN

Georgia Weidman, the founder and chief technology officer for security firm Shevirah, says the website Equifax created looks like the kind of website set up by attackers to trick people into disclosing information.

Weidman says it's teaching people "entirely the wrong things about using the internet securely."

Weidman says she's troubled by Equifax's approach to security generally, including reports that it didn't respond to basic scripting bugs it was warned about last year.

The website is at this link.. Equifax says consumers can also call 866-447-7559 for more information about the breach.


NEW YORK (AP) -- Washington regulators and politicians swiftly criticized Equifax over the exposure of 143 million Americans' personal information.

Jeb Hensarling, chairman of the House Financial Services Committee, said he will call for Congressional hearings on the Equifax breach.

Equifax's requirement for affected customers to sign up for arbitration also drew a backlash. Democrats in the House and Senate called on the company to pull back on its requirement that anyone who signs up for credit monitoring give up their right to sue Equifax in a class-action lawsuit.

The Consumer Financial Protection Bureau, the nation's chief watchdog for financial services, called the breach "troubling" and said Equifax should drop the arbitration requirement. The CFPB recently passed a rule requiring financial companies to let customers sue together when a large group has been wronged.


NEW YORK (AP) -- There's no way around it: The news from credit reporting company Equifax that 143 million Americans had their information exposed is very serious.

The crucial pieces of personal information that criminals may need to commit identity theft -- Social Security numbers, birthdates, address histories, legal names -- were all obtained.

For consumers, it may be time to take even more extreme measures to lock down their information, outside of routine advice like checking your credit reports regularly and seeing if there are any abnormal transactions on your accounts.

The strongest possible option a person can take immediately is placing what's known as a credit freeze on their credit files with the major credit bureaus. That makes it impossible to open new accounts and bank cards -- for thieves as well as yourself.


NEW YORK (AP) -- Investors were bailing out on Equifax a day after the credit monitoring company said a data breach exposed the Social Security numbers and other personal data of 143 million Americans.

Equifax shares fell about 13 percent to $123.75 in heavy trading. The decline equates to about $2.28 billion in lost market value.

The company is one of three major U.S. credit bureaus, the declines extended to its competitors. TransUnion fell 4 percent and Experian stock declined 1 percent in London.

Lenders rely on the information collected by the credit bureaus to help them decide whether to approve financing for homes, cars and credit cards. Credit checks are even sometimes done by employers when deciding whom to hire for a job.


NEW YORK (AP) -- Credit monitoring company Equifax has been hit by a high-tech heist that exposed the Social Security numbers and other sensitive information about 143 million Americans.

Now the unwitting victims have to worry about the threat of having their identities stolen.

The Atlanta-based company, one of three major U.S. credit bureaus, said Thursday that "criminals" exploited a U.S. website application to access files between mid-May and July of this year.

The theft obtained consumers' names, Social Security numbers, birth dates, addresses and, in some cases, driver's license numbers. The purloined data can be enough for crooks to hijack the identities of people whose credentials were stolen.

Equifax discovered the hack July 29, but waited until Thursday to warn consumers. The Atlanta-based company declined to comment beyond its published statement.



 
The comment sections of our web set are designed for thoughtful, intelligent conversation and debate. We want to hear from the viewers but we are not obligated to post comments we feel inappropriate or violate our guidelines. Here are some of the criteria you should follow when posting comments:

Comments cannot be profane or vulgar. Children and families visit this site. We will delete comments that use profanity or cross the lines of good taste.

We will delete all comments using hate speech. Slurs, stereotypes and violent talk aren’t welcome on our web site.

Comments should not attack other readers personally.

We will delete comments we deem offensive, in bad taste, or out of bounds. We are not obligated to post comments that are rude or insensitive.

We do not edit user-submitted comments.

As a host WEAU 13 News welcomes a wide spectrum of opinions. However, we have a responsibility to all our readers to try to keep our comment section fair and decent. For that reason WEAU 13 News reserves the right to not post or to remove any comment.
powered by Disqus