buckeyefarmer
Epic Contributor
Oh crap
Equifax Data Breach
- Thread starter rekees4300
- Start date
- Views: 8085
KubotainNH
Veteran Member
Seems some of this has been updated including the class action thing. Also, on #3 how can they renew something that you do not give a credit card number for?
California
Super Star Member
- Joined
- Jan 22, 2004
- Messages
- 15,012
- Location
- An hour north of San Francisco
- Tractor
- Yanmar YM240 Yanmar YM186D
They know all your credit card #'s?
KubotainNH
Veteran Member
So? You think they will just charge my card without me authorizing it? I have already put my info in the site, no where did I authorize payment.
6 Equifax hack rumors fact-checked - Sep. 11, 217
6 Equifax hack rumors fact-checked - Sep. 11, 217
duffer
Platinum Member
I'm a retired financial advisor, and a few years ago I went to a workshop on identity theft, that was run by a guy who did work for the NSA. the bottom line is that if you want to protect your identity the best way possible, change your usernames and passwords regularly, and especially now, after Equifax "gave" all your info (more than you think) to the hackers. Start with all your financial accts first. (banks, cc's, investments)
Worst case scenario...it can't hurt to change them.
Worst case scenario...it can't hurt to change them.
OP
rekees4300
Elite Member
Cybersecurity Incident & Important Consumer Information | Equifax
I really HATE dealing with the credit bureaus
but guess due to the seriousness of this breach it is prudent. :banghead: Got so-called "enrollment date" from them and will signup for TrustedID Premier this week. Of course nothing with them is easy, have to do everything twice, me and again for wife. :thumbdown:
Last edited:
ericm979
Super Member
- Joined
- Nov 25, 2016
- Messages
- 5,822
- Location
- Santa Cruz Mountains CA, Southern OR
- Tractor
- Branson 3725H Deere 5105
I've been working in data security and encryption for 20 years. At one point Equifax was using one of the encryption products I designed.
The more up to date recommendation is rather than changing passwords often, just use good ones. Good passwords are long strings of random characters. Or long passphrases. The former are impossible to remember, so you need a password manager. The latter can be remembered but are difficult to type. See the new NIST password recomendations: NIST’s new password rules – what you need to know – Naked Security
Even better is to use two factor auth. A problem with that is that you need your phone to be working and with you. There are attacks on two factor auth (for example it's possible for attackers to intercept or redirect SMS/MMS messages) so it's not perfect but it's better than even the best passwords.
The Equifax data that was leaked won't include authentication information for your bank etc. accounts. Changing passwords or turning on two factor auth will make it harder for attackers to get into those accounts but won't prevent identity theft. That data is kept in many places (like Equifax) that are not associated with your accounts.
The more up to date recommendation is rather than changing passwords often, just use good ones. Good passwords are long strings of random characters. Or long passphrases. The former are impossible to remember, so you need a password manager. The latter can be remembered but are difficult to type. See the new NIST password recomendations: NIST’s new password rules – what you need to know – Naked Security
Even better is to use two factor auth. A problem with that is that you need your phone to be working and with you. There are attacks on two factor auth (for example it's possible for attackers to intercept or redirect SMS/MMS messages) so it's not perfect but it's better than even the best passwords.
The Equifax data that was leaked won't include authentication information for your bank etc. accounts. Changing passwords or turning on two factor auth will make it harder for attackers to get into those accounts but won't prevent identity theft. That data is kept in many places (like Equifax) that are not associated with your accounts.
cqaigy2
Super Member
Silvic
Gold Member
Does anyone know if doing a credit freeze prevents a company from doing a credit check or does it only prevent an account for credit being created?
I ask as one company routinely does a credit check on me that I did a one time authorization for many years ago and they still randomly do one without permission. My understanding is a credit check authorization is a one time event not a running permanent authorization.
If I freeze the credit will it prevent them from doing it again?
I ask as one company routinely does a credit check on me that I did a one time authorization for many years ago and they still randomly do one without permission. My understanding is a credit check authorization is a one time event not a running permanent authorization.
If I freeze the credit will it prevent them from doing it again?
OP
rekees4300
Elite Member
Companies can not do credit checks when your account is frozen. You have to temporarily unfreeze. The process is a PITA but in recent years it's been made easier. Now when you unfreeze it you can specify a number of days then it will be automatically refrozen without your intervention. The main thing to remember is that when you initially freeze the account you will be given a PIN number. Be sure to remember and/or store that number for future use. Without the PIN number you will essentially be locked out of your account and you won't be able to unfreeze it without getting a new PIN (I assume an enormous amount of hassle/time).
