Equifax, one of the world’s leading credit risk analysis companies, was hacked. This affected 143 million accounts, and there is talk of the largest personal data theft in history.
Credit card data of 209 thousand customers and documentation were obtained from 182 thousand users in the United States, United Kingdom and Canada. Passwords, social security numbers and driver’s licenses were also stolen.
Equifax is dedicated to overseeing the financial and general situation of credit applicants in the United States. Hence, this cyber attack has so much impact.
According to the company, the attack started from the vulnerability of one of its web applications and the credit reports do not appear to have been stolen. Anyway, a lot of data was extracted, which represents a huge risk for the victims of this cybercrime.
With all of the stolen information, credits or mortgages could be taken on behalf of others. This implies a potential financial and even judicial risk. Because scams and other crimes could also be perpetrated through stolen documentation.
“Although there is still no report with a thorough forensic analysis of how they were compromised (the data), everything would indicate that it was through some vulnerability on the Web that allowed them to obtain files or download the database,” explained specialist in computer security of Immunity, in dialogue with Infobae .
From the company they enabled a page so that users can check if their data was violated.
The first step, once you enter there is to click where it says Start record ( Begin enrollment ). Then enter the name and last six digits of the social security number . Once this is done you will receive a notification advising the user if it was affected or not.
If you have been impacted, you will be offered the option to sign up, for free and for one year, at TrustedID Premier , an Equifax identity protection firm.
By entering that premium program , the user obtains a copy of their credit information, can track their history and obtain insurance against identity theft.
Equifax learned of the attack on July 29, but only made it public on September 7. It is not clear why the communication was delayed to the public, but it is estimated that it could have been a strategy of the company or the US government itself to find those responsible for the crime without raising suspicion.
“This is clearly a disappointing event for our company, and one that attacks the essence of who we are and what we do. I want to apologize to our customers and business customers for the concern and frustration this causes,” said Richard Smith, CEO of the company, by means of a statement.