EQUIFAX Security Breach

September 19, 2017, 07:42 PM

Bombarde32

quote:
Originally posted by stickman428:
Such a stupid mistake. This better effect equifax's credit.

News yesterday was reporting that Equifax was notified of the software vulnerability in MARCH.

https://arstechnica.com/inform...h-two-month-old-bug/

quote:
The flaw in the Apache Struts framework was fixed on March 6. Three days later, the bug was already under mass attack by hackers who were exploiting the flaw to install rogue applications on Web servers. Five days after that, the exploits showed few signs of letting up. Equifax has said the breach on its site occurred in mid-May, more than two months after the flaw came to light and a patch was available.

Thursday's disclosure strongly suggests that Equifax failed to update its Web applications, despite demonstrable proof that the bug gave real-world attackers an easy way to take control of sensitive sites.

I wonder if the room full of monkeys with typewriter could have applied the software patch? Even odds?

September 19, 2017, 09:14 PM

ScreamingCockatoo

I'm reading that Equafax executives sold stock just after the breach.
But BEFORE the announcement.
https://www.engadget.com/2017/...ion-insider-trading/

SOMONE better do hard time for this.
Shit, every last company officer better do time.

September 21, 2017, 06:55 PM

ugeesta

quote:
Originally posted by kx90:
quote:
Originally posted by BamaJeepster:
quote:
Originally posted by kx90:
quote:
Originally posted by BamaJeepster:

https://www.equifaxsecurity2017.com/

OK, so you do the check and it gives you an enrollment date. What does that mean?

Go back on that date to the same link and you can enroll in the free credit monitoring service.

They are staggering enrollments to keep the page from crashing.
Gotcha.

Is it worth enrolling? I think it's TrustedIDPremier? Are they part of Equifax?

Has anyone received the email after enrolling? We've had nothing after 5 days.

We will never know world peace, until three people can simultaneously look each other straight in the eye

Liberals are like pussycats and Twitter is Trump's laser pointer to keep them busy while he takes care of business - Rey HRH.

September 21, 2017, 06:59 PM

mikeyspizza

Enrolled, received the verification email a couple days later, clicked it, and it took me to enroll again. I enrolled again, then got a verification email, and that one worked.

September 21, 2017, 07:41 PM

RogueJSK

No post-enrollment email here. Been waiting a week.

September 21, 2017, 07:43 PM

hunter62

quote:
Originally posted by RogueJSK:
No post-enrollment email here. Been waiting a week.

Same here, will be 7 days tomorrow. Nothing in spam.

September 21, 2017, 09:04 PM

Mr.9mm

No email here either.

February 04, 2022, 10:41 PM

Oz_Shadow

I got an email today with a claim number for the 4 years of identity monitoring through Experian for the Equifax settlement. It got caught in my junk mail.

Anyone else? I won’t trust the link but something should be on the main lawsuit website.

February 04, 2022, 10:54 PM

SIG4EVA

Wow, way to revive a 5 year old thread Oz.

February 04, 2022, 11:29 PM

texassierra

Got the same email but I haven't used the link yet.

February 05, 2022, 07:00 AM

Oz_Shadow

quote:
Originally posted by SIG4EVA:
Wow, way to revive a 5 year old thread Oz.

That’s how long it took to actually see the settlement get approved for distribution.

February 05, 2022, 09:43 AM

RogueJSK

I got the same notification, and it's legitimate.

This ID protection from the settlement was originally supposed to start in 2019, but it was held up by appeals until now.