On July 29, 2017 Equifax discovered that attackers exploited a U.S. website application vulnerability to gain access from mid-May through July 2017 to certain data files. On September 7, 2017 they announced to the public that a cyber security incident impacting approximately 143 million U.S. consumers occurred. According to their statement the incident also impacted residents of the UK and Canada.
To put this into perspective the incident impacted approximately 44% of the U.S. population. The information accessed includes:
- Social Security Numbers
- Birth Dates
- Drivers License numbers
In addition some 209,000 consumers had their credit card numbers accessed; as well as some 182,000 had some dispute documentation accessed.
Here is a video statement by the CEO:
The company is offering a year of credit monitoring to consumers, whether or not they were impacted by this incident.
Links to sites and more information:
They have also set up a website with their full statement and more information: www.equifaxsecurity2017.com
They have a site where you can enter in your last name, and the last 6 digits of your social security number to see if you may have been impacted: https://www.equifaxsecurity2017.com/potential-impact/
Here is the link to the FTC page on placing a Fraud Alerts on your account: https://www.consumer.ftc.gov/articles/0275-place-fraud-alert