I've always thought that our three credit monitoring bureaus (Experian, Equifax and Trans Union) were sort of a criminal enterprise. They collect up information about us, sell it to anyone who is willing to pay, and charge us to even see what they collect. I've always been concerned about the security of the data they collect about us. How do they protect our data? What happens if they don't protect it?
Last week we learned that Equifax "experienced" a massive data breach. The NY Times said that the data breach could affect from 143,000 to 209,000 US citizens. It has always been clear that the data bases maintained by these credit agencies is probably the most valuable, richest target in the cyber world for hackers. So you would think they would have some of the absolute best security in the world. But obviously, they didn't. We also learned from Yahoo News that the hack took place over 9 years, was known about in July, but not announced to the public until September. Between the discovery of the data breach, and the release of the news to the public in September, several Equifax executives were able to sell their stock before the stock price plummeted down.
The company then set up a website to supposedly tell citizens if their data was hacked. It appeared to me that they used this data breach as an opportunity to get a whole lot of more private data from millions of more potential customers that they can market to. Of course that new data now also could become vulnerable to hackers. They also tried to get everyone who inquired to sign up to never being permitted to "sue" equifax and try to get everyone to sign up for their $30/month credit monitoring service.
Last week we learned that Equifax "experienced" a massive data breach. The NY Times said that the data breach could affect from 143,000 to 209,000 US citizens. It has always been clear that the data bases maintained by these credit agencies is probably the most valuable, richest target in the cyber world for hackers. So you would think they would have some of the absolute best security in the world. But obviously, they didn't. We also learned from Yahoo News that the hack took place over 9 years, was known about in July, but not announced to the public until September. Between the discovery of the data breach, and the release of the news to the public in September, several Equifax executives were able to sell their stock before the stock price plummeted down.
The company then set up a website to supposedly tell citizens if their data was hacked. It appeared to me that they used this data breach as an opportunity to get a whole lot of more private data from millions of more potential customers that they can market to. Of course that new data now also could become vulnerable to hackers. They also tried to get everyone who inquired to sign up to never being permitted to "sue" equifax and try to get everyone to sign up for their $30/month credit monitoring service.
No comments:
Post a Comment
I am interested in hearing other viewpoints or corrections to my posts